The aim is to protect against a rogue machine (infected/encyption), by blocking traffic from that machine to the rest of the network, once tagged and the firewall enabled. Tagging and enabling the firewall is easy enough, but I am struggling to get the rules in ePO working to achieve blocking the traffic.
Ideally we would be able to RDP the machine and still allow ENS/ePO traffic, but network browsing, access to shares and files blocked.
We've used McAfee ePO for a number of years, but have never really used the Firewall module.
Thank you for reaching out to McAFee Enterprise Support Community. ENS Firewall isn't configured to allow the application traffic and hence we might have to create rules. Please do check on this article and let us know if we have already created rules ,
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.