STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

A firewall must be installed on RHEL 8.

DISA Rule

SV-230505r627750_rule

Vulnerability Number

V-230505

Group Title

SRG-OS-000297-GPOS-00115

Rule Version

RHEL-08-040100

Severity

CAT II

CCI(s)

• CCI-002314 - The information system controls remote access methods.

Weight

10

Fix Recommendation

Install "firewalld" and enable with the following commands:

$ sudo yum install firewalld.noarch

$ sudo systemctl enable firewalld

Check Contents

Verify that "firewalld" is installed and active with the following commands:

$ sudo yum list installed firewalld

firewalld.noarch 0.7.0-5.el8

$ sudo systemctl is-active firewalld

active

If the "firewalld" package is not installed and "active", ask the System Administrator if another firewall is installed. If no firewall is installed and active this is a finding.

Vulnerability Number

V-230505

Documentable

False

Rule Version

RHEL-08-040100

Severity Override Guidance

Verify that "firewalld" is installed and active with the following commands:

$ sudo yum list installed firewalld

firewalld.noarch 0.7.0-5.el8

$ sudo systemctl is-active firewalld

active

If the "firewalld" package is not installed and "active", ask the System Administrator if another firewall is installed. If no firewall is installed and active this is a finding.

Check Content Reference

M

Target Key

2921

Comments