cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Scar
Level 8
Report Inappropriate Content
Message 1 of 5

ENS installed on Linux - keeping default ENS Policy

Jump to solution

ENS currently installed on RH Linux machine. 

The logs say that it is being managed by ePO however it is unable to grab its ENS firewall policy.

Has anyone else ran into this issue?

Already checked the kernel version matches the install version of ENS.

I am able to add the rule locally with mfefwcli, but cannot pull the rules.

1 Solution

Accepted Solutions
Scar
Level 8
Report Inappropriate Content
Message 5 of 5

Re: ENS installed on Linux - keeping default ENS Policy

Jump to solution

Ended up being the structure of the ENS policy itself.

The rules can only be seen one group deep on the RH machine.

View solution in original post

4 Replies
Pravas
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 5

Re: ENS installed on Linux - keeping default ENS Policy

Jump to solution

Hi @Scar,

Thank you for your post. Is there  a proxy configuration in the RH system? If yes, please read about in the link below.

https://kc.mcafee.com/corporate/index?page=content&id=KB94486&locale=en_US

Thanks

Was my reply helpful?
If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Scar
Level 8
Report Inappropriate Content
Message 3 of 5

Re: ENS installed on Linux - keeping default ENS Policy

Jump to solution

Hello @Pravas ,

There is currently no proxy configuration in the RH system.

Thank you!

Aravind-K
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 4 of 5

Re: ENS installed on Linux - keeping default ENS Policy

Jump to solution

Hello Scar,

Thank you for reaching us through community. Hope you're doing well !

We need to check lot things to narrow down why the ENSL FW policy is not getting applied. Kindly share the below info, which will help me to progress further in this post.

1. OS & Kernel version
2. ENSL version installed in the machine 
3. ENSL TP & FW - Both installed?
4. MA version installed in the machine
5. ePO - Menu - Extension - share the below extension versions

McAfee Agent extension 
Endpoint Security for Linux License
Endpoint Security Platform
Endpoint Security Threat Prevention
Endpoint Security Firewall

6. ePO - System Tree - search for the affected machine - click on the host name - Products - Firewall - Let me know what do you see in below field.

Report Date
Status
Service running
Policy Name (does it show your policy name)
compliance status
Enable firewall

7. Testing

Could please duplicate McAfee Default policy of FW Rules & Options. Assign it to the machine.

After assigning perform a Wakeup Agent to the machine from ePO
Then, fire the below commands in the machine locally.

/opt/McAfee/agent/bin/cmdagent -c
/opt/McAfee/agent/bin/cmdagent -e

Thanks,
Aravind K

 

Scar
Level 8
Report Inappropriate Content
Message 5 of 5

Re: ENS installed on Linux - keeping default ENS Policy

Jump to solution

Ended up being the structure of the ENS policy itself.

The rules can only be seen one group deep on the RH machine.

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community