SV-239320r674889_rule
V-239320
SRG-OS-000480-VMM-002000
ESXI-67-000066
CAT II
10
Note that this check refers to an entity outside the physical scope of the ESXi server system.
Document the configuration of external switch ports as trunk ports.
Log in to the vendor-specific physical switch and disable DTP on the physical switch ports connected to the ESXi host.
Update the documentation according to an organization-defined frequency or whenever modifications are made to either ESXi hosts or the upstream external switch ports.
Note that this check refers to an entity outside the physical scope of the ESXi server system. The configuration of external switch ports as trunk ports must be documented. VST mode does not support DTP, so the trunk must be static and unconditional.
Inspect the documentation and verify that it is correct and updated according to an organization-defined frequency and/or whenever modifications are made to either ESXi hosts or the upstream external switch ports.
If DTP is enabled on the physical switch ports connected to the ESXi host, this is a finding.
V-239320
False
ESXI-67-000066
Note that this check refers to an entity outside the physical scope of the ESXi server system. The configuration of external switch ports as trunk ports must be documented. VST mode does not support DTP, so the trunk must be static and unconditional.
Inspect the documentation and verify that it is correct and updated according to an organization-defined frequency and/or whenever modifications are made to either ESXi hosts or the upstream external switch ports.
If DTP is enabled on the physical switch ports connected to the ESXi host, this is a finding.
M
5326