Back

Configure the "Windows Firewall: Private: Inbound connections" to organizational standards.


CONTROL ID
07747
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS




This Control directly supports the implied Control(s):
  • Configure network protection settings to organizational standards., CC ID: 07601

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH




  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (E86C5885-B74C-4438-BAE6-D655B5D6C002, Win7SP1 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (CD69A732-3A6B-44F3-8072-41D1D5376BE1, Win8 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (0800852C-5936-4E48-842E-3E53FEC4795C, WinVistaSP2 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (81207419-E544-47B9-AB18-561184E35E8E, WS2008R2SP1 Domain Controller Security Compliance, 1.1)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (8525A7F6-8860-46E9-9190-52977256A5E5, WS2008R2SP1 Member Server Security Compliance, 1.1)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (A4780E7E-8A56-4283-82F1-8601FDB26ADE, WS2008SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (A5F6530E-B5A9-4B9F-B4D2-284A995C421A, WS2008SP2 Member Server Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (B5F2B9E5-FA47-4432-8F7D-19CAF9C03A94, WS2012 Domain Controller Security Compliance, 1.0)
  • Configure the "Windows Firewall: Private: Inbound connections" setting to "Enabled". (CE7351CA-F1A4-4C85-9C51-ABA3C2B796D7, WS2012 Member Server Security Compliance, 1.0)
  • (L1) Ensure 'Windows Firewall: Private: Inbound connections' is set to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The recommended state for this setting is: `Block (default)`. Rationale: If the firewall allo… (9.2.2, CIS Microsoft Windows Server 2019 Benchmark, v1.2.1, Level 1)
  • (L1) Ensure 'Windows Firewall: Private: Inbound connections' is set to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The recommended state for this setting is: `Block (default)`. Rationale: If the firewall allo… (9.2.2, CIS Microsoft Windows Server 2019 Benchmark, v1.2.1, Level 2)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the conn… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.1.7_Set_Windows_Firewall_Private_Inbound_connections_to_Block_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.1.7.2_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the conn… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.1.7_Set_Windows_Firewall_Private_Inbound_connections_to_Block_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.1.7.1_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the conn… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.1.7_Set_Windows_Firewall_Private_Inbound_connections_to_Block_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.1.7.2_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the conn… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.1.7_Set_Windows_Firewall_Private_Inbound_connections_to_Block_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.1.7.1_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'Inbound Connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.7_Set_Inbound_Connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.7.2_, The Center for Internet Security Microsoft Windows 8 Level 1 + BitLocker Benchmark, 1.0.0)
  • Title: Set 'Inbound Connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.7_Set_Inbound_Connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.7.1_, The Center for Internet Security Microsoft Windows 8 Level 1 + BitLocker Benchmark, 1.0.0)
  • Title: Set 'Inbound Connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.7_Set_Inbound_Connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.7.2_, The Center for Internet Security Microsoft Windows 8 Level 1 Benchmark, 1.0.0)
  • Title: Set 'Inbound Connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.7_Set_Inbound_Connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.7.1_, The Center for Internet Security Microsoft Windows 8 Level 1 Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.4.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.4.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.4.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.4.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.4.2_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.4.1_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.4.2_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Private: Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow … (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.4_Set_Windows_Firewall_Private_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.4.1_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.1_Set_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.1.1_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Domain Controller Benchmark, 1.0.0)
  • Title: Set 'Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.1_Set_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.1.2_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Domain Controller Benchmark, 1.0.0)
  • Title: Set 'Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.1_Set_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.1.2_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Member Server Benchmark, 1.0.0)
  • Title: Set 'Inbound connections' to 'Enabled:Block (default)' Description: This setting determines the behavior for inbound connections that do not match an inbound firewall rule. The default behavior is to block connections unless there are firewall rules to allow the connection. The recomme… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.2.1_Set_Inbound_connections_to_EnabledBlock_default Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.2.1.1_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Member Server Benchmark, 1.0.0)
  • Windows Firewall should allow or block inbound connections by default as appropriate for the Private Profile. Technical Mechanisms: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Windows Firewall with Advanced Security\Windows Firewall with Advanced Security\Windows Firewall Pro… (CCE-10857-1, Common Configuration Enumeration List, Combined XML: Microsoft Windows Server 2008 R2, 5.20130214)