Details
TFTP client and server should be disabled as they do not require any authentication.
Secure File Transfer Protocol (SFTP) and Secure Copy Protocol (SCP) are recommended as they are part of the SSH protocol suite.
Solution
The command to disable TFTP is as follows
switch:admin> ipfilter –addrule policy_name -rule rule_number -sip any -dp 69 -proto
tcp -act deny
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Brocade.