XCCDF Benchmark: XCCDF Sample for Cisco IOS
Status: draft (as of 2004-10-07)
Version: 0.12.1
Applies to:
1. Introduction
2.1. IOS - line exec timeout value
2.2. Logging level for buffered logging
3. Rules
3.1.1. IOS 11 - no IP finger service
3.1.2. IOS 12 - no IP finger service
3.1.3. Require exec session timeout on admin sessions
3.2. Control Plane Rules
3.2.1. Disable tcp-small-servers
3.2.2. Disable udp-small-servers
3.2.3. Set the buffered logging level
3.3. Data Plane Level 1
3.3.1. Routing Rules
3.3.1.1. IOS - no directed broadcasts
4. Profiles
4.1. Sample Profile No. 1
4.2. Sample Profile No. 2
5. References
Property | Selector | Value |
---|---|---|
value | * | 10 |
default | strict | 10 |
default | lenient | 30 |
lower-bound | * | 1 |
upper-bound | * | 60 |
Property | Selector | Value |
---|---|---|
value | strict | informational |
value | lenient | warning |
value | * | notification |
choices | * | Exclusive values: |
Tailoring value adjustments explicitly set for this profile:
Rules and Groups explicitly selected and deselected for this profile.
Tailoring value adjustments explicitly set for this profile:
Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management