STIGQter STIGQter: STIG Summary: A10 Networks ADC ALG Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

The A10 Networks ADC must not have any unnecessary or unapproved virtual servers configured.

DISA Rule

SV-237039r639564_rule

Vulnerability Number

V-237039

Group Title

SRG-NET-000202-ALG-000124

Rule Version

AADC-AG-000047

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Do not configure a server, service group, or virtual server for any unnecessary or unapproved service.

Check Contents

Review the configured servers, service groups, and virtual servers.

The following command shows information for SLB servers:
show slb server

The following command shows information for service groups (multiple servers):
show slb service-group

The following command shows information for virtual servers (the services visible to outside hosts):
show slb virtual-server

Ask the Administrator for the list of approved services being provided by the device and compare this against the output of the command listed above.

If there are more configured virtual servers than are approved, this is a finding.

Vulnerability Number

V-237039

Documentable

False

Rule Version

AADC-AG-000047

Severity Override Guidance

Review the configured servers, service groups, and virtual servers.

The following command shows information for SLB servers:
show slb server

The following command shows information for service groups (multiple servers):
show slb service-group

The following command shows information for virtual servers (the services visible to outside hosts):
show slb virtual-server

Ask the Administrator for the list of approved services being provided by the device and compare this against the output of the command listed above.

If there are more configured virtual servers than are approved, this is a finding.

Check Content Reference

M

Target Key

5285

Comments