STIGQter: STIG Summary: SDN Using NV Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Feb 2017:

Two or more edge gateways must be deployed connecting the network virtualization platform (NVP) and the physical network.

DISA Rule

SV-87769r1_rule

Vulnerability Number

V-73117

Group Title

NET-SDN-027

Rule Version

NET-SDN-027

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Deploy two or more edge gateways connecting the network virtualization platform and the physical network.

Check Contents

Review the network topology diagram for both the physical infrastructure and the NVP to determine if two or more edge gateways have been deployed between the virtual and physical networks.

If two or more edge gateways connecting the NVP and the physical network have not been deployed, this is a finding.

Note: This requirement is not applicable if hardware switches are deployed as VTEP devices that also function as gateways between VXLANs and between VXLAN and non-VXLAN infrastructures.

Vulnerability Number

V-73117

Documentable

False

Rule Version

NET-SDN-027

Severity Override Guidance

Review the network topology diagram for both the physical infrastructure and the NVP to determine if two or more edge gateways have been deployed between the virtual and physical networks.

If two or more edge gateways connecting the NVP and the physical network have not been deployed, this is a finding.

Note: This requirement is not applicable if hardware switches are deployed as VTEP devices that also function as gateways between VXLANs and between VXLAN and non-VXLAN infrastructures.

Check Content Reference

M

Target Key

3089

Comments