STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide

V-239546

CAT II (Medium)

Proxy Neighbor Discovery Protocol (NDP) must not be enabled on SLES for vRealize.

Rule ID

SV-239546r662089_rule

STIG

VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-000382

Discussion

Proxy Neighbor Discovery Protocol (NDP) allows a system to respond to NDP requests on one interface on behalf of hosts connected to another interface. If this function is enabled when not required, addressing information may be leaked between the attached network segments.

Check Content

Determine if SLES for vRealize has proxy "NDP", and if it is enabled:

# more /proc/sys/net/ipv6/conf/*/proxy_ndp

If the file is not found, the kernel does not have proxy "NDP", this is not a finding.

If the file has a value of "0", proxy "NDP" is not enabled, this is not a finding.

If the file has a value of "1", proxy NDP is enabled, this is a finding.

Fix Text

Disable proxy "NDP" on the system.

For Appliance OS, "proxy_ndp" is disabled by default.