i think i will never get an answer from McAfee for this
did you figure this out?
You have to block Wireless and MTP devices using DLP so that you work computers cannot connect via wireless.
However, if you do need wireless....then you will have to use the HIPS Firewall feature to then allow wireless connections only to specified devices.
However, if you have travelling laptops, then there is a way to ensure that it only connects to the hotel wireless long enough to establish contact with the VPN.
...I forget how that's done...
Also, you probably want to block SD Cards and Bluetooth on your work computers as well.
Also, check into Connection Isolation feature which will prevent bridging.
Travelling employees will have to bring both a work and personal laptop if you enable this, but it will keep your work computers connecting only via VPN