U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

IPSEC VPN Gateway STIG Version 1, Release 16 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Juniper IDP Series Intrusion Detection and Prevention Appliance cpe:/h:juniper:idp_series_intrustion_detection_and_prevention_appliance:- (View CVEs)
Juniper ISG Series Integrated Security Gateway cpe:/h:juniper:isg_series_integrated_security_gateway:- (View CVEs)

Checklist Highlights

Checklist Name:
IPSEC VPN Gateway STIG
Checklist ID:
423
Version:
Version 1, Release 16
Type:
Compliance
Review Status:
Archived
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
04/28/2017

Checklist Summary:

A general overview is contained in U_Network_V8R5_Overview.pdf The IPSec VPN Gateway STIG contains the following files: U_IPSec_VPN_Gateway_V1R1_ReadMe.pdf - Provides an explanation of the files U_Network_V8R5_Overview.pdf - Contains STIG supporting information. U_STIG Transition to XCCDF FAQ 20100126.pdf U_Network_V8R3_VMS_Procedures.pdf U_IPSec_VPN_Gateway_V1R1_Manual_STIG.zip: -U_IPSec_VPN_Gateway_V1R1_Manual-XCCDF.xml -STIG_unclass.xsl - the XCCDF style sheet for the xml file -DoD-DISA-logos-as-JPEG.jpg - used by the style sheet

Checklist Role:

  • IPsec Client, IPsec Agent

Known Issues:

Not provided

Target Audience:

These requirements are designed to assist Security Managers (SMs), Information Assurance Managers (IAMs), IAOs, Network Security Officers (NSOs), and System Administrators (SAs) with configuring and maintaining security controls.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided

Regulatory Compliance:

DoDD 8500.1

Comments/Warnings/Miscellaneous:

Comments or proposed revisions to this document should be sent via email to fso_spt@disa.mil. DISA FSO will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Disclaimer:

Not provided

Product Support:

Comments or proposed revisions to this document should be sent via email to fso_spt@disa.mil. DISA FSO will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Point of Contact:

disa.stig_spt@mail.mil

Sponsor:

DoD

Licensing:

Not provided

Change History: 

Version 1, Release 8 - 25 April 2014
Version 1, Release 7 - 25 October 2013
Version 1, Release 6 - 25 July 2013
Version 1, Release 5 - 26 April 2013
Version 1, Release 4 - 25 January 2013
Version 1, Release 1 - 17 May 2012
Version 1, Release 9 - 26 January 2015
Version 1, Release 10 - 29 October 2015
Changed status from "Under Review" to "Final" - 29 December 2015
Updated STIG to v1, r11 - 10/28/2016
updated to FINAL - 12/07/2016
Updated to Version 1, Release 12 - 04/28/2017
Updated to FINAL - 05/30/2017
null
Updated URL to reflect change to the DISA website - http --> https
Updated - 11/01/2017
Updated to FINAL - 11/27/2017
updated to v1,r14 - 02/16/2018
Updated to FINAL - 3/18/2018
updated to v1,r15 - 4/25/18
Updated to FINAL - 5/25/18
updated to  Version 1, Release 16 - 1/23/19
Updated to FINAL - 2/19/19
Updated URLs - 6/6/19

Dependency/Requirements:

URL Description
https://dl.dod.cyber.mil/wp-content/uploads/stigs/pdf/u_ipsec_vpn_stig_v1_memo.pdf IPSEC VPN Gateway STIG Memo

References:

Reference URL Description

NIST checklist record last modified on 12/12/2019