STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

AIX must be configured with a default gateway for IPv6 if the system uses IPv6 unless the system is a router.

DISA Rule

SV-215264r508663_rule

Vulnerability Number

V-215264

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

AIX7-00-002065

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Configure an IPv6 default route on the system:
# smitty route

Check Contents

If the system is a router, this is Not Applicable.

If the system does not use IPv6, this is Not Applicable.

Determine if the system has a default route configured for IPv6 by running:

# netstat -r | grep default
default 10.11.20.1 UG 1 1823 en0 - -

If a default route is not defined, this is a finding.

Vulnerability Number

V-215264

Documentable

False

Rule Version

AIX7-00-002065

Severity Override Guidance

Check Content Reference

Target Key

4012

AIX must be configured with a default gateway for IPv6 if the system uses IPv6 unless the system is a router.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments