Your browser has JavaScript turned off.
You must turn it on to proceed.










NORS -- CSRIC Best Practices Result

CSRIC Best Practices Result

Detailed Information for the Best Practice: 9-8-8661

Number 9-8-8661
Priority Important
Description Packet Filtering: Service Providers and Network Operators should block tunneling protocols (for example, IP protocol 41 and UDP port 3544) at points where they should not be used. Tunnels can bypass firewall/perimeter security. Use static tunnels where the need for tunneling is known in advance.
Network Type(s) Cable; Internet/Data; Wireline
Industry Role(s) Service Provider; Network Operator
Keyword(s) Cyber Security;Intrusion Detection;Network Design;Network Interoperability;Network Operations;
Reference/Comments NIST SP 800-119 (Draft) 2.4