Download
| Alert*
|
CCE-3262-3
Standard Profile: Allow file and printer sharing exception (SP2 only) CCE-3134-4 The "Windows Firewall: Prohibit notifications" setting should be configured correctly for the Standard Profile. CCE-3176-5 Domain Profile: Allow UPnP framework exception (SP2 only) CCE-3247-4 Domain Profile: Allow file and printer sharing exception (SP2 only) CCE-3103-9 Unicast response to multicast or broadcast requests should be enabled or disabled as appropriate for the Standard Profile. CCE-3141-9 Domain Profile: Allow ICMP exceptions (SP2 only) CCE-3081-7 Standard Profile: Allow ICMP exceptions (SP2 only) CCE-3183-1 Standard Profile: Allow local program exceptions (SP2 only) CCE-3213-6 Standard Profile: Allow Remote Desktop exception (SP2 only) CCE-3284-7 Standard Profile: Protect all network connections (SP2 only) CCE-3304-3 Domain Profile: Allow Remote Desktop exception (SP2 only) CCE-3179-9 Standard Profile: Do not allow exceptions (SP2 only) CCE-3198-9 The "Windows Firewall: Prohibit notifications" setting should be configured correctly for the Domain Profile. CCE-2989-2 Standard Profile: Allow local port exceptions (SP2 only) CCE-2828-2 Domain Profile: Allow local program exceptions CCE-3154-2 Domain Profile: Protect all network connections (SP2 only) CCE-2866-2 Domain Profile: Define port exceptions (SP2 only) CCE-3258-1 Domain Profile: Allow local port exceptions (SP2 only) CCE-2954-6 Standard Profile: Allow remote administration exception (SP2 only) CCE-2476-0 Domain Profile: Allow remote administration CCE-3235-9 Standard Profile: Allow UPnP framework exception (SP2 only) CCE-2923-1 Use this option to specify the path and name of the file in which Windows Firewall will write its log information. Countermeasure: Configure this policy setting to a value suitable for your organization, such as the default value of "%SYSTEMROOT%\System32\LogFiles\firewall\domainfw.log. P ... CCE-2958-7 Select On (recommended) to have Windows Firewall with Advanced Security use the settings for this profile to filter network traffic. If you select Off, Windows Firewall with Advanced Security will not use any of the firewall rules or connection security rules for this profile. The recommended state ... CCE-2965-2 Use this option to log when Windows Firewall with Advanced Security discards an inbound packet for any reason. The log records why and when the packet was dropped. Look for entries with the word DROP in the action column of the log. Countermeasure: Configure this policy setting to "Yes&quo ... CCE-2972-8 This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Countermeasure: Disable this setting to prevent the client from receiving unicast responses. Potential Impact: If you enable this setting and this ... CCE-3090-8 Use this option to log when Windows Firewall with Advanced Security allows an inbound connection. The log records why and when the connection was formed. Look for entries with the word ALLOW in the action column of the log. Countermeasure: Configure this policy setting to "Yes". Pote ... |
