STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG providing intermediary services for remote access communications traffic must provide the capability to immediately disconnect or disable remote access to the information system.

DISA Rule

SV-68609r1_rule

Vulnerability Number

V-54363

Group Title

SRG-NET-000314-ALG-000013

Rule Version

SRG-NET-000314-ALG-000013

Severity

CAT II

CCI(s)

• CCI-002322 - The organization provides the capability to expeditiously disconnect or disable remote access to the information system within the organization-defined time period.

Weight

10

Fix Recommendation

If intermediary services for remote access communications traffic are provided, configure the ALG to provide the capability to immediately disconnect or disable remote access to the information system.

Check Contents

If the ALG does not serve as an intermediary for remote access traffic (e.g., web content filter, TLS and webmail), this is not applicable.

Verify the ALG provides the capability to immediately disconnect or disable remote access to the information system.

If the ALG does not provide the capability to immediately disconnect or disable remote access to the information system, this is a finding.

Vulnerability Number

V-54363

Documentable

False

Rule Version

SRG-NET-000314-ALG-000013

Severity Override Guidance

If the ALG does not serve as an intermediary for remote access traffic (e.g., web content filter, TLS and webmail), this is not applicable.

Verify the ALG provides the capability to immediately disconnect or disable remote access to the information system.

If the ALG does not provide the capability to immediately disconnect or disable remote access to the information system, this is a finding.

Check Content Reference

M

Target Key

2489

Comments