STIGQter STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The operating system must connect to external networks or information systems only through managed IPv6 interfaces consisting of boundary protection devices arranged in accordance with an organizational security architecture.

DISA Rule

SV-219549r603263_rule

Vulnerability Number

V-219549

Group Title

SRG-OS-000480

Rule Version

OL6-00-000106

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The "ip6tables" service can be enabled with the following commands:

# chkconfig ip6tables on
# service ip6tables start

Check Contents

If the system is a cross-domain system, this is not applicable.

If IPv6 is disabled, this is not applicable.

Run the following command to determine the current status of the "ip6tables" service:

# service ip6tables status

If the service is not running, it should return the following:

ip6tables: Firewall is not running.

If the service is not running, this is a finding.

Vulnerability Number

V-219549

Documentable

False

Rule Version

OL6-00-000106

Severity Override Guidance

If the system is a cross-domain system, this is not applicable.

If IPv6 is disabled, this is not applicable.

Run the following command to determine the current status of the "ip6tables" service:

# service ip6tables status

If the service is not running, it should return the following:

ip6tables: Firewall is not running.

If the service is not running, this is a finding.

Check Content Reference

M

Target Key

2928

Comments