McAfee HISCDE-AB-IA Product Guide - Page 72
FAQ — Use of wildcards in Firewall Rules, Create Firewall Rule
View all McAfee HISCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 72 highlights
Configuring Firewall Policies Define firewall protection 3 Determine how you want to view the list of client rules: To... Select columns to display Sort by a column Filter for groups Filter for creation time Filter for searched text Aggregate rules Do this... Select Choose Columns from the Options menu. In the Select Columns page, add, remove, or reorder the columns for the display. Click the column header. From the Filter menu select This Group Only or This Group and All Subgroups. Select the time the rule was created: None, Since, or Between. When selecting Since, enter a beginning date; when selecting Between, enter both a beginning and ending date. Click Clear to remove filter settings. Type the process path, process name, user name, computer name, or signature ID to filter on. Click Clear to remove filter settings. Click Aggregate, select the criteria on which to aggregate rules., then click OK. Click Clear to remove aggregation settings. 4 To move rules to a policy, select one or more in the list, click Create Firewall Rule, then indicate the policy to which to move the rules. FAQ - Use of wildcards in Firewall Rules When entering values in certain fields in firewall rules, Host IPS permits the use of wildcards. Which wildcards can I use for path and address values? For paths of files, registry keys, executables, and URLs, use these wildcards: Character ? (question mark) * (one asterisk) ** (two asterisks) | (pipe) Definition A single character. Multiple characters, excluding / and \. Use to match the root-level contents of a folder with no subfolders. Multiple characters, including / and \ . Wildcard escape. NOTE: For ** the escape is |*|*. NOTE: Registry key paths for firewall group locations do not recognize wildcard values. Which wildcards can I use for all other values? For values that normally do not contain path information with slashes, use these wildcards: Character ? (question mark) * (one asterisk) | (pipe) Definition A single character. Multiple characters, including / and \ . Wildcard escape. 72 McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5