UCF STIG Viewer Logo

The system must provide VPN connectivity for communications over untrusted networks.


Finding ID Version Rule ID IA Controls Severity
V-218061 RHEL-06-000321 SV-218061r505923_rule Low
Providing the ability for remote users or systems to initiate a secure VPN connection protects information when it is transmitted over a wide area network.
Red Hat Enterprise Linux 6 Security Technical Implementation Guide 2020-09-03


Check Text ( C-19542r462412_chk )
If the system does not communicate over untrusted networks, this is not applicable.

Run the following command to determine if the "libreswan" package is installed:

# rpm -q libreswan

If the package is not installed, this is a finding.
Fix Text (F-19540r462413_fix)
The “libreswan” package provides an implementation of IPsec and IKE, which permits the creation of secure tunnels over untrusted networks. The "libreswan" package can be installed with the following command:

# yum install libreswan