cancel
Showing results for 
Search instead for 
Did you mean: 
dcdeez
Level 7

HIPS Auto generated rule only showing 4 "Remote network names"

I took over an existing ePO 5.3.1 environment and am looking at the HIPS rules currently in production.

When I navigate to Reporting>HIPS 8.0. Then under the system tree I click the group I want to see currently applied rules for. Under "Remote Network Name" there are two rules with 4 IPs listed then a comma. Almost like there should be a 5th or more listed IPs.

These two rules are marked as "Dynamically Created via Adaptive mode" so I'd like to determine if there is more than 4 systems these rules pertain to. For example it has something like  "IP1, IP2, IP3, IP4," with a comma on the end. instead of just "IP1, IP2, IP3, IP4".

Also when I click the rule and then click the "Go to Related Network" link it has the same thing listed with the comma at the end.

Is there a way to see all 5+ systems this rule applies to?

Thanks.

0 Kudos
2 Replies
McAfee Employee

Re: HIPS Auto generated rule only showing 4 "Remote network names"

Add the client rule to a policy (test policy if you want), then modify the rule to see the list. 

0 Kudos
dcdeez
Level 7

Re: HIPS Auto generated rule only showing 4 "Remote network names"

Where do you click to "Modify" rules created by HIPS Adaptive Mode. Even after adding to a policy I can't seem to see or edit the "Remote Network Name".

Following the HIPS Product guide it says...

"On the Firewall Rules policy page, click New Group to create a new group; click Edit under Actions to edit an existing group"

I click edit on the rule and go to the 3rd tab "Network Options" There are no systems listed.

0 Kudos