What does this IPTable rule (SV-50313r2

You seem to be quoting the IPTables “50313r2_rule” rule.

It’s basically a simple concept once you get by the attempts at jargon and complexity. Here is my breakdown:

The operating system must prevent public IPv4 access into an organizations internal networks…

On a default level—outside of additional software concerns—the base operating system should not (by default) grant wider access to the LAN the system is connected to. This is mostly commonsense/default behavior. And this kind of default behavior can often be circumvented by installing additional software on a machine—such as a server—or enabling a service in the OS.

…except as appropriately mediated by managed interfaces employing boundary protection devices.

A “managed interface” is just any network interface that is managed. So “management” can often refer to simply enabling or tweaking firewall software or built-in firewall rules in the OS. The phrasing of “boundary protection devices” is really confusing because such a “device” can simply be firewall software configured to pay attention to a specific physical port on a machine.

JakeGould

Posted 2016-06-30T05:28:05.437

Reputation: 38 217

the base operating system should not (by default) grant wider access to the LAN the system is connected to by this you mean block ports that are not required? – Kishor Pawar – 2016-06-30T06:26:01.230

@KishorPawar Basically, yes. Ports and just network access to any address outside of the machine itself. – JakeGould – 2016-06-30T06:44:40.497

The referred to rule SV-50313r2_rule is a reference to the SCAP XCCDF and OVAL file entry to document and perform the check for this particular setting. It has no other meaning than where to find it in the automated DISA scan data files. – kronenpj – 2016-07-19T00:00:07.657

What does this IPTable rule (SV-50313r2_rule) mean?

Answers