McAfee UTILITIES 4.0 Guía de usuario Pagina 51
- Pagina / 112
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Host Intrusion Prevention also supports a type of rule group that does affect how rules are
handled. These groups are called
connection
-
aware
groups. Rules within connection-aware
groups are processed only when certain criteria are met.
Connection-aware groups let you manage rules that apply only when you connect to a network
using a wired connection, a wireless connection, or a non-specific connection with particular
parameters. In addition, these groups are network adapter-aware, so that computers with
multiple network interfaces can have rules apply that are adapter- specific. Parameters for
allowed connections can include any or all of the following for each network adapter:
• IP address
• DNS suffix
• Gateway IP
• DHCP IP
• DNS server queried to resolve URLs
• WINS server used
If two connection-aware groups apply to a connection, Host Intrusion Prevention uses normal
precedence and processes the first applicable connection-aware group in its rule list. If no rule
in the first connection-aware group matches, rule processing continues and may match a rule
in the next group.
When Host Intrusion Prevention matches a connection-aware group’s parameters to an active
connection, it applies the rules within the connection group. It treats the rules as a small rule
set and uses normal precedence. If some rules do not match the intercepted traffic, the firewall
ignores them.
A connection is allowed when
all
of the following conditions apply to a network adapter:
• If Connection type is LAN.
or
If Connection type is Wireless.
or
If Connection type is Any and the DNS suffix list or the IP Address List is populated.
• If IP Address List is selected, the IP address of the adapter must match one of the list
entries.
• If DNS Suffix is selected, the DNS suffix of the adapter must match one of the list entries.
• If Default Gateway is selected, the default adapter Gateway IP must match at least one
of the list entries.
• If DHCP Server is selected, the adapter DHCP server IP must match at least one of the list
entries.
• If DNS Server List is selected, the adapter DNS server IP address must match any of the
list entries.
• If Primary WINS Server is selected, the adapter primary WINS server IP address must
match at least one of the list entries.
• If Secondary WINS Server is selected, the adapter secondary WINS server IP address
must match at least one of the list entries.
Configuring Firewall Policies
Overview of Firewall policies
51McAfee Host Intrusion Prevention 7.0 Product Guide for use with ePolicy Orchestrator 4.0
- Product Guide 1
- Basic protection 8
- Advanced protection 8
- IPS policies 8
- Firewall policies 8
- Policy management 9
- Policy tracking and tuning 10
- Preset protection 11
- Adaptive and learn mode 11
- Dashboards and queries 12
- Managing Your Protection 13
- Management of policies 16
- Where to find policies 17
- Configuring polices 18
- Automatic tuning with clients 19
- Management of systems 20
- Host IPS server tasks 21
- Host IPS protection updates 22
- Checking in update packages 23
- Updating clients with content 23
- Configuring IPS Policies 24
- Behavioral rules 25
- Reactions 26
- Exception rules 26
- Working with IPS signatures 30
- Creating signatures 33
- Creating exception rules 39
- Working with IPS events 40
- Managing IPS events 41
- Managing IPS client rules 43
- Configuring Firewall Policies 45
- Stateful packet filtering 46
- Stateful packet inspection 46
- State table 47
- State table functionality 47
- How firewall rules work 47
- How stateful filtering works 48
- Stateful protocol tracking 49
- Overview of Firewall policies 51
- Firewall client rules 55
- Quarantine policies and rules 55
- 4 Click Save to save changes 60
- Creating firewall rule groups 61
- Configuring General Policies 76
- Unlocking the Windows client 78
- Working with Host Intrusion 81
- Prevention Clients 81
- Creating 85
- System tray icon 86
- Setting client UI options 87
- Client error reporting 88
- Windows client alerts 90
- Responding to Firewall alerts 91
- About the IPS Policy tab 93
- About the Firewall Policy tab 94
- About the Blocked Hosts tab 96
- About the Activity Log tab 98
- Solaris client issues 100
- Client installation issues 100
- Client operations issues 100
- Stopping the Solaris client 101
- Overview of the Linux client 102
- Notes about the Linux client 103
- Linux client issues 103
- Stopping the Linux client 105
- Restarting the Linux client 105
- (continued) 107
Relacionado con productos y manuales para Software McAfee UTILITIES 4.0
Software McAfee QUICKCLEAN 3.0 Guía de usuario
(41 paginas)
(41 paginas)
Software McAfee UNINSTALLER 6.0 Guía de usuario
(99 paginas)
(99 paginas)
Software McAfee QUICKCLEAN 1.0 Guía de instalación
(29 paginas)
(29 paginas)
Software McAfee ENDPOINT ENCRYPTION ENTERPRISE - BEST PRACTICES GUIDE Especificaciones
(120 paginas)
(120 paginas)
Software McAfee QUICKCLEAN 1.0 Guía de usuario
(41 paginas)
(41 paginas)
Software McAfee UTILITIES 4.0 Manual de usuario
(11 paginas)
(11 paginas)
Software McAfee QUICKCLEAN 1.0 Manual de usuario
(22 paginas)
(22 paginas)
Software McAfee GUARD DOG 2 Guía de usuario
(128 paginas)
(128 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.022 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales