Details

Enables the authentication of EIGRP neighbor before routing information is received from the neighbor



Rationale:



Enabling the routing protocol authentication prevents against attackers who can send wrong routing information in order to redirect traffic to their network or send malformed packets in order to saturate and to exhaust the control plane.


Solution

Predefined FlexConfig object found in Firepower Management Center:

FlexConfig Object Name - Eigrp_Configure
Configures EIGRP routing next-hop, auto-summary, router-id, eigrp-stub.


Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Cisco_Firepower.


References


Source