USNS MONTFORD POINT - Findings

Showing 1 unique vulnerabilities (1 total) (filtered) View Documentation Status (90 tracked)

V-259353 CAT II In a split DNS configuration between the external and intern...

1 asset Documented Pending Review Microsoft Windows Se...

Hostname	IP Address	Status	Assigned To	Last Scan	Actions
MONT-DC-003	164.231.187.34			2026-01-14
Finding Details No details recorded. Comments Need to check with HBSS

Check Text

Consult with the system administrator to review the external Windows DNS Server's DOD approved firewall policy. The inbound TCP and UDP ports 53 rule should be configured to only restrict IP addresses from the internal network. If the DOD-approved firewall policy is not configured with the restriction, consult with the network firewall administrator to confirm the restriction on the network firewall. If neither the DNS server's DOD approved firewall policy nor the network firewall is configured to block internal hosts from querying the external DNS server, this is a finding.

Fix Text

Configure the external DNS server's firewall policy, or the network firewall, to block queries from internal hosts.

Finding Details

Comments

Check Text

Fix Text