apiperCIS
commented
5 years ago Inputs 1) List of the organization's VLANs, along with the systems (network devices, etc.) associated with administering, configuring, and filtering between them 2) Approved configuration(s) for these VLANs and related systems to enable firewall filtering between VLANs
Operations 1) For each VLAN in Input 1, check each of its related systems to see if they are configured in accordance with the appropriate approved configurations from Input 2 to enable firewall filtering between VLANs. Create a list of VLANs that are correctly configured (M1) and a list of VLANs that are not correctly configured (M2) noting which related systems are misconfigured and the details of the misconfiguration.
Measures M1: List of correctly configured VLANs (compliant list) M2: List of incorrectly configured VLANs along with deviations (non-compliant list) M3: Count of correctly configured VLANs (count of M1) M4: Total count of VLANs (count of Input 1)
Metrics Ratio of VLANs properly configured for firewall filtering: M3 / M4
Enable firewall filtering between VLANs to ensure that only authorized systems are able to communicate with other systems necessary to fulfill their specific responsibilities.
Measures
Metrics