Sign In
Upload
Manuals
Brands
McAfee Manuals
Software
Host Intrusion Prevention 8.0
McAfee Host Intrusion Prevention 8.0 Manuals
Manuals and User Guides for McAfee Host Intrusion Prevention 8.0. We have
1
McAfee Host Intrusion Prevention 8.0 manual available for free PDF download: Product Manual
McAfee Host Intrusion Prevention 8.0 Product Manual (154 pages)
Product Guide for use with ePolicy Orchestrator 4.5
Brand:
McAfee
| Category:
Software
| Size: 1.72 MB
Table of Contents
Table of Contents
3
Introducing Host Intrusion Prevention
7
Host IPS Protection
7
Host IPS Policies
8
Host IPS Policy Management
9
Host IPS Policy Tracking and Tuning
10
Managing Your Protection
12
Information Management
12
Host IPS Dashboards
12
Host IPS Queries
13
Policy Management
16
Where to Find Policies
16
Configuring Polices
17
Default Protection and Tuning
18
Host IPS Policy Migration
22
System Management
23
Host IPS Permission Sets
23
Assigning Permission Sets
24
Host IPS Server Tasks
25
Host IPS Event Responses
26
Host IPS Protection Updates
27
Checking in Packages Manually
28
Configuring IPS Policies
29
Overview of IPS Policies
29
Methods for Delivery of IPS Protection
30
Signatures
31
Behavioral Rules
32
Reactions
32
Exceptions
32
Application Protection Rules
33
Events
33
Enable IPS Protection
33
Configuring the IPS Options Policy
34
Set the Reaction for IPS Signatures
35
Configuring the IPS Protection Policy
36
Define IPS Protection
36
Configuring the IPS Rules Policy
37
Assigning Multiple Instances of the Policy
37
FAQ - Multiple-Instance Policies
38
How IPS Signatures Work
39
How IPS Application Protection Rules Work
43
How IPS Exceptions Work
46
Monitor IPS Events
47
Managing IPS Events
48
Creating an Exception from an Event
49
Creating a Trusted Application from an Event
50
Monitor IPS Client Rules
50
Managing IPS Client Rules
50
Configuring Firewall Policies
52
Overview of Firewall Policies
52
How Firewall Rules Work
53
Firewall Protocols
53
How Firewall Rule Groups Work
55
How the Host IPS Catalog Works
58
Firewall Stateful Packet Filtering and Inspection
59
Stateful Protocol Tracking
62
How Learn and Adaptive Modes Affect the Firewall
63
Firewall Client Rules
64
Enable Firewall Protection
64
Configuring the Firewall Options Policy
65
FAQ - Mcafee Trustedsource and the Firewall
66
Define Firewall Protection
67
Configuring the Firewall Rules Policy
68
Creating and Editing Firewall Rules
69
Creating and Editing Firewall Rule Groups
69
Creating Connection Isolation Groups
70
Blocking DNS Traffic
70
Using the Host IPS Catalog
70
Managing Firewall Client Rules
71
FAQ - Use of Wildcards in Firewall Rules
72
Configuring General Policies
73
Overview of General Policies
73
Define Client Functionality
74
Configuring a Client UI Policy
74
Setting Client UI General Options
75
Setting Client UI Advanced Options and Passwords
75
Setting Client UI Troubleshooting Options
76
Define Trusted Networks
77
Configuring a Trusted Networks Policy
78
Define Trusted Applications
78
Configuring a Trusted Applications Policy
79
Creating and Editing Trusted Application Rules
79
Assigning Multiple Instances of the Policy
80
Working with Host Intrusion Prevention Clients
81
Overview of the Windows Client
81
System Tray Icon Menu
81
Client Console for Windows Clients
83
Unlocking the Windows Client Interface
83
Setting Client UI Options
83
Troubleshooting the Windows Client
84
Windows Client Alerts
86
About the IPS Policy Tab
88
About the Firewall Policy Tab
89
About the Blocked Hosts Tab
91
Editing the Blocked Hosts List
92
About the Application Protection List Tab
92
About the Activity Log Tab
93
Overview of the Solaris Client
94
Policy Enforcement with the Solaris Client
94
Troubleshooting the Solaris Client
95
Overview of the Linux Client
97
Policy Enforcement with the Linux Client
97
Notes about the Linux Client
97
Troubleshooting the Linux Client
98
Appendix A - Writing Custom Signatures and Exceptions
101
Rule Structure
101
Common Sections
102
Optional Common Sections
104
Wildcards and Variables
104
Windows Custom Signatures
107
Windows Class Buffer Overflow
107
Windows Class Files
108
Windows Class Hook
111
Windows Class Illegal Host IPS API Use
112
Windows Class Illegal Use
113
Windows Class Isapi (HTTP)
113
Windows Class Program
116
Windows Class Registry
117
Windows Class Services
120
Windows Class SQL
122
Classes and Directives Per Windows Platform
123
Non-Windows Custom Signatures
127
Solaris/Linux Class Unix_File
127
Solaris/Linux Class Unix_Apache (HTTP)
130
Solaris/Linux Class Unix_Misc
131
Solaris Class Unix_Bo
132
Solaris Class Unix_Map
133
Solaris Class UNIX_GUID
133
Classes and Directives Per UNIX Platform
134
Appendix B - Troubleshooting
136
General Issues
136
Host IPS Logs
141
Clientcontrol.exe Utility
144
Advertisement
Advertisement
Related Products
McAfee VIRUSSCAN 8.7I
MCAFEE DR SOLOMON S ANTI-VIRUS 8.5
McAfee VirusScan Enterprise 8.8
McAfee Agent 4.0
MCAFEE AGENT 4.0 PATCH 2 - FOR WINDOWS S 10-03-2009
MCAFEE ANTI-THEFT FILE PROTECTION
McAfee AVDCDE-AA-AA - Active Virus Defense Suite
McAfee AVDCDE-BA-CA - Active Virus Defense Suite
McAfee AVM85M - VirusScan For Mac
McAfee Data Loss Prevention 9.2.1
McAfee Categories
Software
Firewall
Accessories
Network Hardware
Server
More McAfee Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL