UCF STIG Viewer Logo

The router must have IP source routing disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-3081 NET0770 SV-15317r2_rule Medium
Description
Source routing is a feature of IP, whereby individual packets can specify routes. This feature is used in several different network attacks by bypassing perimeter and internal defense mechanisms.
STIG Date
Infrastructure Router - Juniper Security Technical Implementation Guide 2017-09-28

Details

Check Text ( C-12783r2_chk )
Under the edit chassis hierarchy, enter a show command to verify that the no-source-route command is present.
Fix Text (F-3106r2_fix)
Configure the router to disable IP source routing.