Back

Configure the "Windows Firewall: Domain: Allow unicast response" to organizational standards.


CONTROL ID
07893
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS




This Control directly supports the implied Control(s):
  • Configure network protection settings to organizational standards., CC ID: 07601

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH




  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (19E95A46-D240-4DF0-8B1E-70D2014FBEC1, Win7SP1 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (7A847572-E0B5-4743-A6F6-A76EEBEA7D8C, Win8 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (98B4746D-9AD3-4722-8025-103CB925D59D, WinVistaSP2 Computer Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (E49C6D08-900C-401E-9981-F018B575A8D3, WS2008R2SP1 Domain Controller Security Compliance, 1.1)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (9101CC88-82E7-4791-9E9D-CA4067264D8F, WS2008R2SP1 Member Server Security Compliance, 1.1)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "Not Defined". (ADAB3D72-1F31-4C7B-9B53-26B76148941A, WS2008SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (7AC5A04E-BE71-44C4-90EC-40A9BA231752, WS2008SP2 Member Server Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (BF67A92C-133F-4B13-AE90-09DDFF42D715, WS2012 Domain Controller Security Compliance, 1.0)
  • Configure the "Windows Firewall: Domain: Allow unicast response" setting to "No". (F5BF05A2-E930-444E-885F-D7360D3B2E54, WS2012 Member Server Security Compliance, 1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.3.7_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.3.7.2_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.3.7_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.3.7.1_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.3.7_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.3.7.1_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.3.1.1.3.7_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.3.1.1.3.7.2_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.1.6_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.1.6.2_, The Center for Internet Security Microsoft Windows 8 Level 1 + BitLocker Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.1.6_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.1.6.1_, The Center for Internet Security Microsoft Windows 8 Level 1 + BitLocker Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.1.6_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.1.6.1_, The Center for Internet Security Microsoft Windows 8 Level 1 Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.1.6_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.1.6.2_, The Center for Internet Security Microsoft Windows 8 Level 1 Benchmark, 1.0.0)
  • Title: Configure 'Windows Firewall: Domain: Allow unicast response' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast mes… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.10_Configure_Windows_Firewall_Domain_Allow_unicast_response Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.10.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Configure 'Windows Firewall: Domain: Allow unicast response' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast mes… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.10_Configure_Windows_Firewall_Domain_Allow_unicast_response Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.10.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.11_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.11.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.2.11_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.2.11.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.3_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.3.1_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.3_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.3.2_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.3_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.3.1_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. Rationale: An attacker could respond to broadcast or multicast m… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.1.4.1.1.1.3_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.1.4.1.1.1.3.2_, The Center for Internet Security Microsoft Windows Server 2008 R2 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.3.2_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.3.2.2_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Domain Controller Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.3.2_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.3.2.1_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Domain Controller Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.3.2_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.3.2.2_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Member Server Benchmark, 1.0.0)
  • Title: Set 'Windows Firewall: Domain: Allow unicast response' to 'No' Description: This option is useful if you need to control whether this computer receives unicast responses to its outgoing multicast or broadcast messages. The recommended state for this setting is: No. Rationale: An att… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.5.3.2_Set_Windows_Firewall_Domain_Allow_unicast_response_to_No Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.5.3.2.1_, The Center for Internet Security Microsoft Windows Server 2012 Level 1 Member Server Benchmark, 1.0.0)
  • Unicast response to multicast or broadcast requests should be enabled or disabled as appropriate for the Domain Profile. Technical Mechanisms: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Windows Firewall with Advanced Security\Windows Firewall with Advanced Security\Windows F… (CCE-11041-1, Common Configuration Enumeration List, Combined XML: Microsoft Windows Server 2008 R2, 5.20130214)