cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
dmease27
Level 9
Report Inappropriate Content
Message 1 of 3
‎02-07-2019 04:37 AM

HIPS FW replacement with ENS firewall - contradiction Installation Guide on replacement

Jump to solution

Hi,

PD27564 (McAfee Endpoint Security 10.6.0 - Installation Guide) page 18 states:

"McAfee Endpoint Security Firewall replaces the Host Intrusion Prevention Firewall, and you can also migrate your existing firewall settings to the new firewall. Host Intrusion Prevention (without its firewall module) can run side by side with Endpoint Security Firewall."

and

"You are not required to upgrade to Endpoint Security Firewall or migrate your settings. You can continue to run the McAfee Host IPS Firewall after installing Endpoint Security Firewall. Whenever McAfee Host IPS Firewall is installed and enabled, Endpoint Security Firewall is disabled even if enabled in the policy settings."

The first statement seems to imply that when ENS firewall module is installed, it removes and replaces HIPS FW.  This seems to be backed up by the explicit statement that HIPS (without its FW module) can run side by side with ENS FW.

The second statement seems to imply that HIPS FW is *not* removed, as it advises that both are present on the system.

 

Ultimately - if I have HIPS installed (including FW module), and I install ENS Threat Prevention+Firewall, does this action a)uninstall HIPS FW module or b)leave the HIPS FW module on the system and disable ENS firewall?

 

Cheers,

0 Kudos
Reply
1 Solution

Accepted Solutions
ktankink
Employee
Employee
Report Inappropriate Content
Message 3 of 3
‎02-12-2019 11:34 AM

Re: HIPS FW replacement with ENS firewall - contradiction Installation Guide on replacement

Jump to solution

Hi @dmease27 .

PD27564 (McAfee Endpoint Security 10.6.0 - Installation Guide) page 34 states the Deployment task/Command line switch to remove HIPS from the system when ENS is installed.  Use this in the ENS Common package command line section of your McAfee Agent Deployment task to automatically uninstall HIPS during ENS installation.

 

/override"program_name" Overrides and removes the specified conflicting products:
• hips — McAfee Host Intrusion Prevention
Example:
/override"hips"
Removes McAfee Host Intrusion Prevention automatically during installation.

 

Also, the HIPS modules will take precedence over the ENS modules.  If you have both products installed, disable the HIPS modules if you want the ENS modules to be enabled.  If you want to switch back to HIPS, then just enable the HIPS modules again, and it will automatically disable the ENS modules.

HIPS IPS > ENS Exploit Prevention

HIPS Firewall > ENS Firewall

 

 

 

View solution in original post

0 Kudos
Reply
2 Replies
Former Member
Not applicable
Report Inappropriate Content
Message 2 of 3
‎02-12-2019 03:40 AM

Re: HIPS FW replacement with ENS firewall - contradiction Installation Guide on replacement

Jump to solution

You can have ENSFW and HIPS installed at the same time. It will only replace HIPS if  you use a specific parameter during the upgrade/ migration. You can however only have one firewall active - so either ENSFW or HIPS.

0 Kudos
Reply
ktankink
Employee
Employee
Report Inappropriate Content
Message 3 of 3
‎02-12-2019 11:34 AM

Re: HIPS FW replacement with ENS firewall - contradiction Installation Guide on replacement

Jump to solution

Hi @dmease27 .

PD27564 (McAfee Endpoint Security 10.6.0 - Installation Guide) page 34 states the Deployment task/Command line switch to remove HIPS from the system when ENS is installed.  Use this in the ENS Common package command line section of your McAfee Agent Deployment task to automatically uninstall HIPS during ENS installation.

 

/override"program_name" Overrides and removes the specified conflicting products:
• hips — McAfee Host Intrusion Prevention
Example:
/override"hips"
Removes McAfee Host Intrusion Prevention automatically during installation.

 

Also, the HIPS modules will take precedence over the ENS modules.  If you have both products installed, disable the HIPS modules if you want the ENS modules to be enabled.  If you want to switch back to HIPS, then just enable the HIPS modules again, and it will automatically disable the ENS modules.

HIPS IPS > ENS Exploit Prevention

HIPS Firewall > ENS Firewall

 

 

 

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC