Manualshelf

Product guide

ManualsBrandsMcafee ManualsOtherFIREWALL 2.1-GETTING STARTED
21222324252627282930
3
Click New Policy. The New Policy window appears.
4
Choose a policy in the Create a policy based on this existing policy list.
5
Enter a name in the Policy Name field.
6
[Optional] Enter a description in the Notes field.
7
Click OK.
The new policy appears in the Name column in the Policy Catalog area.
Configure discovery options
Edit a policy to specify optional route and discovery information for managed systems.
Specifying route discovery information provides Endpoint Intelligence Agent with the Firewall
Enterprise/NTBA IP address needed for sending metadata to a particular network route.
If you do not configure firewall information for a particular route, McAfee EIA automatically discovers
the firewall for that route provided the firewall is deployed in dynamic mode.
Task
For option definitions, click ? in the interface.
1
From the ePolicy Orchestrator console, select Menu | Policy | Policy Catalog. The Policy Catalog area
appears.
2
In the Product list, select Endpoint Intelligence Agent 2.1.0.
3
In the Name column, click the policy to configure. The General Settings tab appears.
4
In the Shared Key field, enter the key to decrypt the redirected messages. This key must be same
between the firewall/NTBA and endpoint. The shared key must contain a minimum of 16
characters.
5
In the Device Type list, select McAfeeFirewall Enterprise or NTBA.
6
Specify the following information on the routes on which Endpoint Intelligence Agent sends
information to the firewall/NTBA.
Option Definition
Routes
Destination — Specifies the server IP to which communication request is sent. Endpoint
Intelligence Agent sends connection information of IPs in the specified subnet to
Firewall Enterprise.
Source — Specifies the host IP. Endpoint Intelligence Agent sends connection
information of IPs in the specified subnet to NTBA.
Subnet Mask — Specifies the subnet mask value for the network.
Device IP — Specifies the IP address of the Firewall Enterprise/NTBA appliance that
needs endpoint information from the Endpoint Intelligence Agent.
Port — The default port used by Firewall Enterprise/NTBA is 9008.
7
Click Add Route.
To remove a route, select the entry and click Remove Route.
8
Configure exemptions for specific destinations as needed.
3
Configure Endpoint Intelligence Agent on Firewall Enterprise
Configure policy
22
Endpoint Intelligence Agent 2.1.0 Product Guide