Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0 Guía de instalación descargar pdf (Pagina 9)

TrustedSource rating and blocking: Firewall rules block or allow incoming or outgoing

traffic according to McAfee TrustedSource ratings

•

• IP spoof protection: Firewall rules block outgoing traffic when the local IP address isn't

one of the local system's IP addresses, and when a local MAC address is not a VM guest

MAC address

• Bridged VM support: Firewall rules allow traffic with a local MAC address that is not the

local system's MAC address but is one of the MAC addresses in the range of supported

VM software

• Startup protection: Firewall rules block all incoming traffic before the firewall services

have started

• Additional firewall policy: Firewall DNS Blocking that consists of a set of domain name patterns

that are to be blocked. This policy replaces the Domain Rule that blocked DNS resolution

for user-specified domain names.

• New features for the Firewall Rules policy:

• Firewall rules are much more flexible: A single rule can now contain multiple applications

(previously only one), multiple networks (previously only one), a local network and a

remote network (previously only a remote network), and VPN media type in addition to

wired and wireless.

• Connection-Aware Groups are now simply firewall groups that have location information

and schedules with timed access for connections associated with them

• Executable matching for applications is now by path, hash, digital signature and file

description for firewall rules instead of path and hash only.

General

• Application Blocking Options and Application Blocking Rules polices removed and their

functionality replaced by two content signatures (6010 and 6011) in the Host IPS Rules

policy

• Firewall Quarantine Options and Quarantine Rules policies removed and the startup quarantine

option moved to a Firewall Options startup protection option

• New Host IPS Catalog to organize and enable reuse of common policy components among

policies, particularly firewall groups, rules, locations, executables, and networks

• Single standard set of wildcards used throughout the product

• Logs located in a common folder, with some logs simplified for easier reading

Platform support

• Full feature parity across 32- and 64-bit Windows platforms.

• Added: Windows 7; Linux SUSe10 SP3, SUSe 11; Solaris Zone support

• Removed: Windows 2000, Solaris 8, and SUSe Linux 9

SQL support

• Added: SQL 2005, SQL 2008

• Removed: SQL 2000

Installing McAfee Host Intrusion Prevention

What's new in this release

9McAfee Host Intrusion Prevention 8.0 Installation Guide

1 2 3 4 5 6 7 8 9 10 11 12 13 14 ... 48 49

Sin comentarios

Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0 Guía de instalación Pagina 9