9.1.7.3. Information Flow EnforcementΒΆ
IPTables is installed and running on all SIMP clients. IPtables controls the flow of inbound traffic by limiting IP addresses, protocols, and port numbers.
The default IPTables rules:
Allow all outbound traffic
Allow ping
Allow traffic from established connections
Drop broadcast traffic
Drop multicast traffic
Drop all other traffic
References: AC-4 : INFORMATION FLOW ENFORCEMENT, CM-7b.