The IPS must block malicious code.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-206889 | SRG-NET-000249 | SRG-NET-000249-IDPS-00176 | SV-206889r1137734_rule | 2025-09-22 | 3 |
Description
Configuring the IPS to blocks, drops, and/or quarantine based on local organizational incident handling procedures minimizes the impact of this code on the network.
ℹ️ Check
If the device being reviewed is an IDS, this is not applicable.
Verify the IPS blocks malicious code.
If the IPS does not block malicious code, this is a finding.
✔️ Fix
Configure the IPS to block malicious code.