2 Replies Latest reply on Sep 30, 2014 9:22 AM by greatscott

    question about KB article regarding CAG troubleshooting


      From this KB Article below, I am reading the following statement:


      "For clients running McAfee Agent 4.0 Patch 1 and Host Intrusion Prevention 7.0 Patch 3 or higher which are managed by the Host Intrusion Prevention 7.0.3 Extension for ePO 4.0 or higher:


      The ePO server must be reachable via this connection entry in the Connection Aware Group (CAG) configuration. The rules in the CAG should be enforced only if the CAG criteria are matched AND the ePO server can be resolved via DNS query over any interface.


      This section of the log displays how Connection Aware Groups are configured and that the Requires home network option will be enabled"



      McAfee KnowledgeBase - Troubleshooting Host Intrusion Prevention Connection Aware Groups


      Am I reading this right? A system that uses a CAG in it's firewall policy, must also be able to resolve the ePO server via DNS query, for the CAG to be applicable? Doesn't seem right, and I have not read this in the past.