McAfee UTILITIES 4.0 Betriebsanweisung Seite 90
- Seite / 112
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Settings options for Firewall logging
As part of troubleshooting you can create firewall activity logs that can be analyzed on the
system or sent to McAfee support to help resolve problems. Use this task to to enable Firewall
logging.
Task
1 Select the Firewall Enable Logging checkbox.
2 Select the message type (All or a combination of Information, Warning, Error, Debug).
3 Click OK. The information is written to C:\Documents and Settings\All Users\Application
Data\McAfee\Host Intrusion Prevention\FireSvc.log; on Windows Vista: C:\Program
Data\McAfee\Host Intrusion Prevention\FireSvc.log folder. After the file reaches 100 MB,
a new file is created.
Disabling Host IPS engines
As part of troubleshooting, you can also disable engines that protect a client. McAfee recommends
that only administrators communicating with McAfee support use this troubleshooting procedure.
For access, click Functionality in the Troubleshooting Options dialog box. In the HIPS
Engines dialog box that appears, disable one or more client system engines by deselecting
the checkbox next to the engine. After the problem has been resolved, and to return to a normal
operating environment, be sure all engines are selected.
Figure 38: HIPS Engines
NOTE:
SQL and HTTP appear in the list only if the client is running a server operating system.
Windows client alerts
A user can encounter several types of alert messages and needs to react to them. These include
intrusion detection, firewall, quarantine, application blocking, and spoof detection alerts. Firewall
and application blocking alerts appear only when the client is in learn mode for these features.
Responding to Intrusion alerts
If you enable IPS protection and the Display pop-up alert option, this alert automatically
appears when Host Intrusion Prevention detects a potential attack. If the client is in adaptive
Working with Host Intrusion Prevention Clients
Overview of the Windows client
McAfee Host Intrusion Prevention 7.0 Product Guide for use with ePolicy Orchestrator 4.090
- Product Guide 1
- Basic protection 8
- Advanced protection 8
- IPS policies 8
- Firewall policies 8
- Policy management 9
- Policy tracking and tuning 10
- Preset protection 11
- Adaptive and learn mode 11
- Dashboards and queries 12
- Managing Your Protection 13
- Management of policies 16
- Where to find policies 17
- Configuring polices 18
- Automatic tuning with clients 19
- Management of systems 20
- Host IPS server tasks 21
- Host IPS protection updates 22
- Checking in update packages 23
- Updating clients with content 23
- Configuring IPS Policies 24
- Behavioral rules 25
- Reactions 26
- Exception rules 26
- Working with IPS signatures 30
- Creating signatures 33
- Creating exception rules 39
- Working with IPS events 40
- Managing IPS events 41
- Managing IPS client rules 43
- Configuring Firewall Policies 45
- Stateful packet filtering 46
- Stateful packet inspection 46
- State table 47
- State table functionality 47
- How firewall rules work 47
- How stateful filtering works 48
- Stateful protocol tracking 49
- Overview of Firewall policies 51
- Firewall client rules 55
- Quarantine policies and rules 55
- 4 Click Save to save changes 60
- Creating firewall rule groups 61
- Configuring General Policies 76
- Unlocking the Windows client 78
- Working with Host Intrusion 81
- Prevention Clients 81
- Creating 85
- System tray icon 86
- Setting client UI options 87
- Client error reporting 88
- Windows client alerts 90
- Responding to Firewall alerts 91
- About the IPS Policy tab 93
- About the Firewall Policy tab 94
- About the Blocked Hosts tab 96
- About the Activity Log tab 98
- Solaris client issues 100
- Client installation issues 100
- Client operations issues 100
- Stopping the Solaris client 101
- Overview of the Linux client 102
- Notes about the Linux client 103
- Linux client issues 103
- Stopping the Linux client 105
- Restarting the Linux client 105
- (continued) 107
Verwandte Produkte und Handbücher für Software McAfee UTILITIES 4.0
Software McAfee QUICKCLEAN 3.0 Betriebsanweisung
(41 Seiten)
(41 Seiten)
Software McAfee QUICKCLEAN 1.0 Betriebsanweisung
(41 Seiten)
(41 Seiten)
Software McAfee GUARD DOG 2 Betriebsanweisung
(128 Seiten)
(128 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.122 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern