Checklist for Auditing Network Equipment
Review controls around developing and maintaining configurations.
Ensure that appropriate controls are in place for any vulnerabilities associated with the current software version. These controls might include software updates, configuration changes, or other compensating controls.
Verify that all unnecessary services are disabled.
Ensure that good SNMP management practices are followed.
Review and evaluate procedures for creating user accounts and ensuring that accounts are created only when there's a legitimate business need. Also review and evaluate processes for ensuring that accounts are removed or disabled in a timely fashion in the event of termination or job change.
Ensure that appropriate password controls are used.
Verify that secure management protocols are used where possible.
Ensure that current backups exist for configuration files if applicable.
Verify that logging is enabled and sent to a centralized system.
Evaluate use of the Network Time Protocol (NTP).
Verify that a banner is configured to make all connecting users aware of the company's policy for use and monitoring.
Ensure that access controls are applied to the console port.
Ensure that all network equipment is stored in a secure location.
Ensure that a standard naming convention is used for all devices.
Verify that standard, documented processes exist for building network devices.
Auditing Layer 2 Devices-Additional Controls for Switches
These controls should be evaluated in addition to performing the general steps for auditing network equipment.
Checklist for Auditing Layer 2 Devices: Additional Controls for Switches
Auditing Layer 3 Devices-Additional Controls for Routers
These controls should be evaluated in addition to performing the general steps for auditing network equipment.
Checklist for Auditing Layer 3 Devices: Additional Controls for Routers
Auditing Firewalls-Additional Controls
These controls should be evaluated in addition to performing the general steps for auditing network equipment.
Checklist for Auditing Firewalls: Additional Controls
Verify that all packets are denied by default.
Ensure that inappropriate internal and external IP addresses are filtered.
| Free Download Attachment | Size |
|---|---|
| ChecklistforAuditing-Network.xls | 19.5 KB |