McAfee HISCDE-AB-IA Product Guide - Page 71
Managing firewall client rules, Menu | Policy | Host IPS Catalog
View all McAfee HISCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 71 highlights
Configuring Firewall Policies Define firewall protection Task For option definitions, click ? in the interface. 1 Click Menu | Policy | Host IPS Catalog. 2 Under Item Type select a catalog item. Choices include: Group, Rule, Application, Process, Network, and Location. 3 Do any of the following on the catalog page: To... Filter for an item Change the view of items Edit an item Do this... Enter filter criteria, then click Set Filter. Click Clear to return to the default view. Select Options | Choose Columns, select, remove, or reorder columns, then click Save. Click the link associated with the item. Click Edit to edit the item, click Duplicate to create a copy of the item, click Delete to remove the item. NOTE: If you delete an item that has a dependent link, a new and independent copy of the deleted item is placed with the linking rule or group. Create and add an item Export a single item Export all items of the catalog type Import items of the catalog type Click New. In the page or pages that appear, enter the appropriate data, then click Save. Click the Export link associated with the item. Click Export in the upper-right corner of the page, then name and save the xml-format file. Click Import in the upper-right corner of the page, then locate and open the xml-format file with catalog data. NOTE: To add an item from the catalog while creating a firewall rule or group, click Add From Catalog at the bottom of the appropriate builder page. To add an item that you created while working in the firewall rule or group builder, click the Add to Catalog link next to the item. When you add an item from or to the catalog you create a dependent link between the item and the catalog with a Break Catalog Reference link. Clicking this link breaks the dependency between the item and the catalog and creates a new and independent item in its place with the linking rule or group. Managing firewall client rules Viewing firewall client rules created automatically in adaptive or learn mode or manually on a client and moving them to a Firewall Rules policy can tune and tighten security. NOTE: Access to Firewall Client Rules on the Host IPS tab under Reporting requires additional permissions other than that for Host Intrusion Prevention Firewall, including view permissions for Event Log, Systems, and System Tree access. Task For option definitions, click ? on the page displaying the options. 1 Click Menu | Reporting | Host IPS, then click Firewall Client Rules. 2 Select the group in the System Tree for which you want to display client rules. McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5 71