I want to create a rule that when laptops are connected to the corporate network with the cable, the Wifi adapter automaticly 'disables/blocks' to avoid having two IP adresses assigned to one machine.
DHCP traffic is hard-coded to be allowed, so you cannot create HIPS rules to block IP address requests/assignments to a DHCP server, nor can it enable/disable a network adapter.
I'm not sure about what other McAfee products can perform this; you might want to run this scenario by your McAfee Sales team.
this has a pretty good rundown basically you use CAG's to isolate connections...also you may want to create a DLP rule to prevent USB 3G dongles from being used....not sure if "Connection Isolation" will prevent these.
As far as VPN's...i think there is a canned firewall group you can bring into your firewall ruleset.
Also, you can use DLP to montior Network Cards and from that data...find out how wireless cards are identified to block them completely.