STIGQter: STIG Summary: DBN-6300 IDPS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017: STIGQter: STIG Summary: DBN-6300 IDPS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017:SV-79515r1_rule
V-65025
SRG-NET-000512-IDPS-00194
DBNW-IP-000060
CAT II
10
Evaluate the site architecture to determine where the optimum logical connections would provide maximum database visibility.
Disconnect the network taps from the incorrectly attached network ports. Reconnect the correctly identified taps.
Navigate to the Admin >> Capture >> Port Configuration menu.
Click on "Port Enabled", if it is not already enabled, to ensure that the DBN-6300 will see and capture traffic.
Navigate to the "Database" tab and choose "Service Discovery".
Verify that database services are beginning to appear on the page.
Ask the site representative if the DBN-6300 is used to protect the database tier.
If the DBN-6300 is not used to protect the database tier, this is not a finding.
Ask the site for documentation of which database tier is required to be protected.
Verify connectivity of the capture ports to the correct database tier that is required to be protected.
If the DBN-6300 is not connected to protect the database tier for maximum database traffic visibility of the organization's databases, this is a finding.
V-65025
False
DBNW-IP-000060
Ask the site representative if the DBN-6300 is used to protect the database tier.
If the DBN-6300 is not used to protect the database tier, this is not a finding.
Ask the site for documentation of which database tier is required to be protected.
Verify connectivity of the capture ports to the correct database tier that is required to be protected.
If the DBN-6300 is not connected to protect the database tier for maximum database traffic visibility of the organization's databases, this is a finding.
M
2949