The RUCKUS ICX management network gateway must be configured to transport management traffic to the Network Operations Center (NOC) via dedicated circuit.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-273613	RCKS-RTR-000460	SV-273613r1110924_rule		Medium

Description

When the production network is managed in-band or out-of-band (OOBM), the management network could be housed at a NOC that is located remotely at single or multiple interconnected sites. NOC interconnectivity, as well as connectivity between the NOC and the managed network, must be enabled using IPsec tunnels or dedicated circuits to provide the separation and integrity of the managed traffic.

STIG	Date
RUCKUS ICX Router Security Technical Implementation Guide	2025-06-03

Details

Check Text (C-77704r1109859_chk)

This requirement is not applicable for the DODIN Backbone.

Review the network topology diagram to determine connectivity between the managed network and the NOC.

Review the management network gateway router configuration to validate the path and interface that the management traffic traverses.

If management traffic is not transported between the managed network and the NOC via dedicated circuit, this is a finding.

Fix Text (F-77609r1109860_fix)

This requirement is not applicable for the DODIN Backbone.

Deploy a dedicated circuit to transport management traffic between the managed network and the NOC.