Overview

General policies apply to IPS and firewall settings and take precedence over settings in individual IPS and firewall policies.

The Enforce Policies policy is the basic on/off switch for enforcing Host Intrusion Prevention administrative policies on the agent.

The Client UI policy determines which options are available to a client computer with a Host Intrusion Prevention agent, including whether the agent icon appears in the system tray, types of intrusion alerts, and passwords for access to the client interface.

The Trusted Networks policy lists IP addresses and subnets that are safe for communication. Trusted networks can include subnets, individual IP addresses, or ranges of IP addresses. Marking networks as trusted eliminates or reduces the need for IPS exceptions and additional firewall rules.

The Trusted Applications Rules policy lists applications that are safe, have no known vulnerabilities, and are allowed to perform any operation. Marking applications as trusted eliminates or reduces the need for IPS exceptions and additional firewall and application blocking rules. Like the IPS Rules policy (see Configuring the IPS Rules policy), this policy category can contain multiple policy instances.

Settings for Trusted Networks and Trusted Applications policies can reduce or eliminate false positives, which aids in tuning a deployment.

General feature

Copyright © 2006 McAfee, Inc. All Rights Reserved.