SV-215662r648760_rule
V-215662
SRG-APP-000001-NDM-000200
CISC-ND-000010
CAT II
10
Configure the router to limit the number of concurrent management sessions to an organization-defined number as shown in the example below.
R4(config)#ip http max-connections 2
R4(config)#line vty 0 1
R4(config-line)#transport input ssh
R4(config-line)#exit
R4(config)#line vty 2 4
R4(config-line)# transport input none
R4(config-line)#end
Note: This requirement is not applicable to file transfer actions such as FTP, SCP and SFTP.
Review the router configuration to determine if concurrent management sessions are limited as show in the example below:
ip http secure-server
ip http max-connections 2
…
…
…
line vty 0 1
transport input ssh
line vty 2 4
transport input none
If the router is not configured to limit the number of concurrent management sessions, this is a finding.
V-215662
False
CISC-ND-000010
Note: This requirement is not applicable to file transfer actions such as FTP, SCP and SFTP.
Review the router configuration to determine if concurrent management sessions are limited as show in the example below:
ip http secure-server
ip http max-connections 2
…
…
…
line vty 0 1
transport input ssh
line vty 2 4
transport input none
If the router is not configured to limit the number of concurrent management sessions, this is a finding.
M
4014