STIGQter STIGQter: STIG Summary: HP FlexFabric Switch L2S Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The HP FlexFabric Switch must provide the capability for authorized users to select a user session to capture.

DISA Rule

SV-80549r1_rule

Vulnerability Number

V-66059

Group Title

SRG-NET-000331-L2S-000001

Rule Version

HFFS-L2-000008

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch to capture ingress and egress packets from any designated switch port for the purpose of monitoring a specific user session as shown in the following example:

[HP]mirroring-group 1 local

[HP]mirroring-group 1 mirroring-port GigabitEthernet 1/0/1 both

[HP]mirroring-group 1 monitor-port GigabitEthernet 1/0/2

Check Contents

Verify that the HP FlexFabric Switch is capable of capturing ingress and egress packets from any designated switch port for the purpose of monitoring a specific user session.

If the HP FlexFabric Switch is not capable of capturing ingress and egress packets from a designated switch port, this is a finding.

[HP]display mirroring-group X
Mirroring group X:

Type: Remote source
Status: Active
Mirroring port: GigabitEthernet1/0/1 Both
Monitor port: GigabitEthernet1/0/2

Vulnerability Number

V-66059

Documentable

False

Rule Version

HFFS-L2-000008

Severity Override Guidance

Verify that the HP FlexFabric Switch is capable of capturing ingress and egress packets from any designated switch port for the purpose of monitoring a specific user session.

If the HP FlexFabric Switch is not capable of capturing ingress and egress packets from a designated switch port, this is a finding.

[HP]display mirroring-group X
Mirroring group X:

Type: Remote source
Status: Active
Mirroring port: GigabitEthernet1/0/1 Both
Monitor port: GigabitEthernet1/0/2

Check Content Reference

M

Target Key

2977

Comments