The A10 Networks Application Delivery Controller (ADC) Application Layer Gateway (ALG) Security Technical Implementation Guide (STIG) provides the technical security policies, requirements, and implementation details for applying security concepts to the A10 Networks AX and Thunder platforms (physical and virtual machine). This document is meant for use in conjunction with the A10 Networks ADC Network Device Management STIG and is required to be used for each deployment of the A10 Networks ADC. The A10 Networks AX and Thunder ADCs are advanced load balancers with additional capabilities, including an integrated Web Application Firewall (WAF), HTTP and Domain Name System (DNS) protocol compliance checking, and Secure Sockets Layer/Transport Layer Security (SSL/TLS) encryption. These platforms are not intended as enclave perimeter protection devices and are used primarily to increase availability of services by managing connections to servers. The A10 Networks ADC platforms come in both FIPS-compliant and non-FIPS-compliant versions. For use within the DoD, FIPS-compliant versions must be used. FIPS-compliant versions are identified by the designation “FIPS” in the stock keeping unit (SKU).
- Domain Controller
- Specialized Security-Limited Functionality (SSLF)
DoD Instruction (DoDI) 8500.01
NIST does not guarantee or warrant the checklist’s accuracy or completeness. NIST is not responsible for loss, damage, or problems that may be caused by using the checklist.
All technical NIST SP 800-53 requirements were considered while developing this STIG. Requirements that are applicable and configurable will be included in the final STIG. A report marked For Official Use Only (FOUO) will be available for those items that did not meet requirements. This report will be available to component Authorizing Official (AO) personnel for risk assessment purposes by request via email to: email@example.com
New Checklist Candidate - 07/18/2017
Updated URL to reflect change to the DISA website - http --> https
Moved to FINAL - 03/30/2018
Updated URLs - 6/4/19
NIST checklist record last modified on 06/04/2019