1. Manuals
  2. Brands
  3. McAfee Manuals
  4. Software
  5. HISCDE-AB-IA - Host Intrusion Prevention
  6. Product manual

Faq - Use Of Wildcards In Firewall Rules - McAfee HISCDE-AB-IA - Host Intrusion Prevention Product Manual

Product guide for use with epolicy orchestrator 4.5
Hide thumbs
Table of Contents

Advertisement

Configuring Firewall Policies
Define firewall protection
3
Determine how you want to view the list of client rules:
To...
Select columns to display
Sort by a column
Filter for groups
Filter for creation time
Filter for searched text
Aggregate rules
4
To move rules to a policy, select one or more in the list, click Create Firewall Rule, then
indicate the policy to which to move the rules.
FAQ — Use of wildcards in Firewall Rules
When entering values in certain fields in firewall rules, Host IPS permits the use of wildcards.
Which wildcards can I use for path and address values?
For paths of files, registry keys, executables, and URLs, use these wildcards:
Character
? (question mark)
* (one asterisk)
** (two asterisks)
| (pipe)
NOTE:
Registry key paths for firewall group locations do not recognize wildcard values.
Which wildcards can I use for all other values?
For values that normally do not contain path information with slashes, use these wildcards:
Character
? (question mark)
* (one asterisk)
| (pipe)
72
McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5
Do this...
Select Choose Columns from the Options menu. In
the Select Columns page, add, remove, or reorder the
columns for the display.
Click the column header.
From the Filter menu select This Group Only or This
Group and All Subgroups.
Select the time the rule was created: None, Since, or
Between. When selecting Since, enter a beginning date;
when selecting Between, enter both a beginning and
ending date. Click Clear to remove filter settings.
Type the process path, process name, user name,
computer name, or signature ID to filter on. Click Clear
to remove filter settings.
Click Aggregate, select the criteria on which to
aggregate rules., then click OK. Click Clear to remove
aggregation settings.
Definition
A single character.
Multiple characters, excluding / and \. Use to match the
root-level contents of a folder with no subfolders.
Multiple characters, including / and \ .
Wildcard escape.
NOTE:
For ** the escape is |*|*.
Definition
A single character.
Multiple characters, including / and \ .
Wildcard escape.

Advertisement

Table of Contents
loading

Related Manuals for McAfee HISCDE-AB-IA - Host Intrusion Prevention

Related Content for McAfee HISCDE-AB-IA - Host Intrusion Prevention

This manual is also suitable for:

Host intrusion prevention 8.0

Table of Contents