Mcafee FIREWALL 4.0 User Manual
McAfee Firewall
VERSION 4.0
PRODUCT GUIDE
COPYRIGHT
© 2002 Networks Associates Technology, Inc. and its Affiliated Companies. All Rights Reserved. No
part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or
translated into any language in any form or by any means without the written permission of
Network Associates, Inc.
TRADEMARK ATTRIBUTIONS
ACTIVE SECURITY, ACTIVE SECURITY (IN KATAKANA), ACTIVEHELP, ACTIVESHIELD,
ANTIVIRUS ANYWARE AND DESIGN, BOMB SHELTER, CERTIFIED NETWORK EXPERT,
CLEAN-UP, CLEANUP WIZARD, CNX, CNX CERTIFICATION CERTIFIED NETWORK EXPERT
AND DESIGN, CYBERCOP, CYBERCOP (IN KATAKANA), CYBERMEDIA, CYBERMEDIA
UNINSTALLER, DESIGN (STYLIZED N), DISK MINDER, DISTRIBUTED SNIF FER SYSTEM,
DISTRIBUTED SNIFFER SYSTEM (IN KATAKANA), DR SOLOMON’S, DR SOLOMON’S LABEL,
ENTERPRISE SECURECAST, ENTERPRISE SECURECAST (IN KATAKANA), EZ SETUP, FIRST
AID, FORCEFIELD, GMT, GROUPSHIELD, GROUPSHIELD (IN KATAKANA), GUARD DOG,
HELPDESK, HOMEGUARD, HUNTER, ISDN TEL/SCOPE, LANGURU, LANGURU (IN
KATAKANA), M AND DESIGN, MAGIC SOLUTIONS, MAGIC SOLUTIONS (IN KATAKANA),
MAGIC UNIVERSITY, MA GICSPY, MAGICTREE, MCAFEE, MCAFEE (IN KATAKANA),
MCAFEE AND DESIGN, MULTIMEDIA CLOAKING, NET TOOLS, NET TOOLS (IN
KATAKANA), NETCRYPTO, NETOCTUPUS, NETSCAN, NETSHIELD, NETSTALKER,
NETWORK ASSOCIATES, NETXRAY, NOTESGUARD, NUTS & BOLTS, OIL CHANGE, PC
MEDIC, PC MEDIC 97, PCNOTARY, PGP, PGP (PRETTY GOOD PRIVACY), PRETTY GOOD
PRIVACY, PRIMESUPPORT, RECOVERKEY, RECOVERKEY - INTERNATIONAL, REGISTRY
WIZARD, REPORTMAGIC, RINGFENCE, ROUTER P M, SALESMAGIC, SECURECAST , SERVICE
LEVEL MANAGER, SERVICEMAGIC, SMARTDESK, SNIFFER, SNIFFER (IN HANGUL),
SNIFFMASTER, SNIFFMASTER (IN HANGUL), SNIFFMASTER (IN KATAKANA), SNIFFNET,
STALKER, SUPPORTMAGIC, TIS, TMEG, TNV, TVD, TNS, TOTAL NETWORK SECURITY,
TOTAL NETWORK VISI BILITY, TOTAL NETWORK VISIBILITY (IN KATAKAN A), TOTAL
SERVICE DESK, TOTA L VIRUS DEFENSE, TRUSTED M AIL, UNINSTALLER, VIREX, VIRUS
FORUM, VIRUSCAN, VIRU SSCAN, WEBSCAN, WEBSHI ELD, WEBSHIELD (IN KATAKANA),
WEBSNIFFER, WEBSTALK ER, WEBWALL, WHO’S WATCHING YOUR NETWORK,
WINGAUGE, YOUR E-BUSINESS DEFENDER, ZAC 2000, ZIP MANAGER are registered
trademarks of Net work As socia tes, Inc. and/or its affi liates i n the US an d/or ot her coun tries . All
other registered and unregistered trademarks in this document are the sole property of their
respective owners. © 2002 Networks Associates Technology, Inc. All Rights Reserved.
Issued August 2002 / Product Guide v4.0
McAfee Perpetual End User License Agr eement – United States of America
NOTICE TO ALL USERS: CA REFULLY READ THE FOLLOWING LEGAL AGREEMENT
("AGREEMENT"), FOR THE LICENSE OF SPECIFIED SOFTWARE ("SOFTWARE") PRODUCED
BY NETWORK ASSOCIATES, INC. ("McAfee"). BY CLICKING THE ACCEPT BUTTON OR
INSTALLING THE SOFTWARE, YOU (EITHER AN I NDIVIDUAL OR A SINGLE ENTITY)
CONSENT TO BE BOUND BY AND BECOME A PARTY TO THIS AGREEMENT. IF YOU DO NOT
AGREE TO ALL OF THE TER MS OF THIS AGREEMENT, CLICK THE BUTTON THAT
INDICATES THAT YOU DO NOT ACCEPT THE TERMS OF THIS AGREEMENT AND DO NOT
INSTALL THE SO FTWARE. (IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO THE
PLACE OF PURCHASE FOR A FULL REFUND.)
1. License Grant. Subject to the payment of the applicable license fees, and subject to the terms and conditions of
this Agreement, McAfee hereby grants to you a non-exclusive, non-transferable right to use one copy of the
specified version of the Software and the accompanying docume ntation (the "Documenta tion"). You may instal l
one copy of t he S oftwar e on one co mpute r, w orkst atio n, pe rsona l di gita l ass istan t, pa ger, "sma rt ph one" or ot her
electronic device for which the Software was designed (each, a "Client Device"). If the Software is licensed as
a suite or bundle with more than one specified Software product, this license applies to all such specified
Software produ ct s, subject to any restri ct ions or usage terms specified on the applicable price list or product
packaging that apply to any of such Software products individually.
a. Use
b. Server-Mo de U se
c. Volume License Use
. The Software is licensed as a single product; it may not be used on more than one Client Device
or by more than one user at a time, except as set forth in this Sectio n 1 . The S o ftwa re is "in use" on a
Client Device when it is l oaded into th e temporary memory (i.e. , random-a ccess memory or RAM) or
installed into the permanent memory (e.g., hard disk, CD-ROM, or other storage device) of that Client
Device. This license authorizes you to make one copy of t he Software solely for backup or archiv al
purposes, p rovided t hat th e copy yo u make co ntains all of the Sof tware' s propri etar y notice s unalt ered
and unobstructed.
. You may use the Software on a Client Device as a server ("Se rver") within a
multi-user or n et wor ke d en vi ronm ent (" Se rver -Mo de" ) on ly if s uch use is pe rmit te d i n the a p pl icab le
price list or product packaging for the Software. A separate license is required for each Client Device
or "seat" that may connect to the Server at any time, regardless of whether such licensed Client
Devices or seats are concurrently connected to, accessing or using the Sof t w are. Use of software or
hardware that reduces the number of Client D evices or seats directly accessing or utilizi ng the
Software (e.g ., " m ultiplexing" or "pooling" software or hardware) d oes not reduce the number of
licenses required (i.e., the required number of licenses would equal the number of distinct inputs to
the multiple xing or pooling software or hardware " front end "). If the number of Client Devices or seats
that can conn ect to th e Soft war e can exce ed th e numbe r of li censes you ha ve obt aine d, the n you mus t
have a reasonable mechanism in place to ensure that your use of the Software does not exceed the use
limits specified for the licenses you have obtained. This license authorizes you t o make o r d ownlo ad
one copy of the Documentation for each Client Device or seat that is licensed, provided that each such
copy contains all of th e D ocumentation's proprietary notices una ltered and unobstruct ed.
. If the Software is licens ed with volume license terms s pecified in the applic able
product invoicing or product packaging for the Software, you may make, use and install as many
additional copies of the Software on the number of Client Devices as the volume license te rms specify.
You must have a reasona ble mechanism in place to ensure that the number of Client Devices on which
the Software has be en installed does no t ex ceed the number of licenses you have obtain ed. This
license authorizes you to make or download one copy of the Documentation for each additional copy
authorized by the volume license, provided that each su ch copy contains all o f t he D ocumentation' s
proprietary noti ce s unaltered and unobst ructed.
Product Guide iii
2. Term. This Agreement is effective for an unlimited duration unless and until earlier terminated as set forth
herein. This Agreement will terminate automatically if you fail to comply with any of the limitations or other
requirements described herein. Upon any termination or expiration of this Agreement, you must cease use of the
Software and destroy all copies of the Software an d the Documentat ion.
3. Updates. For the time period specified in the applicable product invoicing or product packaging for the
Software, you are entitled to download revisions or updates to the Software when and as Mc Afee publishes t hem
via its elect ronic bullet in boar d syste m, websi te or t hrough o ther on line ser vices. For a pe riod of ninety (90) days
from the date of the of original purchase of the Software, you are entitled to download one (1) revision or upgrade
to the Software when and as McAfee publishes it via its electronic bulletin board system, website or through
other online services. After the specified time period, you have no further rights to receive any revisions or
upgrades with out purchase of a new lic ense to the Software .
4. Ownership Ri ghts. The Software i s pr ot ected by United State s co pyright laws and int er national treaty
provisions. McAfee and its suppliers o wn and retain all right, title and intere st in and to the Software, in cludin g
all copyrights, patents, trade secret rights, trademarks and other intellectual property rights therein. Your
possession, installatio n, or us e of the Software does not trans fer to you any title to the in tellectual p roperty in the
Software, and you will not acquire any rights to the Software e xcept as e xpressly s et for th in thi s Agreement. All
copies of the Software and Documentation made hereunder must contain the same proprietary notices that appear
on and in the Softw ar e and Documentati on.
5. Restrictions. You may not sell, lease, license, rent, lo an or otherwise transf er, with or without consid eration, the
Software. Mc A fee updates its Soft ware frequently and performance dat a for its Software change. Before
conducting be nchmark tests rega rding this Softwa re, contact McAfe e to verify that You possess the correct
Software for the test and the then current version and editio n of the Software . You agree not to permit any third
party (other than t hi rd parties under contract with You whic h contains nondiscl os u r e obligations no less
restrictive than thos e set forth herein) to use the Licensed Pro gram in any form and sha ll use all reasonab le efforts
to ensure that no im p r oper or unauthorize d use of the Licensed Prog r am is made. You may no t p ermit third
parties to benefit from the use or functionality of the Software via a timesharing, service bureau or other
arrangement, except to the extent such use is specified in the applicable list price or product packaging for the
Software. You m ay not transfer any of th e ri ghts granted to you under this Agreement. You may not re ver se
engineer, decompile, or disassemble the Software, except to the extent the forego in g restriction is ex pr essly
prohibited by applicable law. You may not mo dify, or crea te derivative wo rks based upon, the Software in whole
or in part. You may not copy the Software or Documentation except as expressly permitted in Section 1 above.
You may not rem ove any proprieta ry notices or labels on the Software. All ri ghts not expressly set forth
hereunder are res erved by McAfee.
6. Warranty and Disclaimer.
a. Limited Warranty
. McAfee warrants that for sixty (60) days from the date of original purchase the
media (e.g., diskettes) on which the Software is contained will be free from defects in materials and
workmanship.
b. Customer Remedies
. McAfee's and its suppliers' entire liability and your exclusive remedy for any
breach of the fo regoing warranty s hall be, at McAfee' s option, either (i) return of the purchase price
paid for the license, if any, or (ii) replacement of the defective media in which the Software is
contained. You m us t r et ur n the defective media to M cAfee at your expense w ith a copy of your
receipt. This limited war ranty is void if the defect has resu lted from accident , abuse, or misapp lication.
Any replacement media will be warran te d for the remainder of the original warranty period. Outside
the United States, this remedy is not available to the extent McAfee is subject to restrictions under
United States export control laws and regulations.
iv McAfee Firewall 4.0
c. Warranty Disclaimer. Except for the limited warranty set forth herein, THE SOFTWARE IS
PROVIDED "AS IS." TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW,
MCAFEE DISCLAIMS ALL WARRANTIES, EI THER EXPRESS OR IMPLIED, INCLUDING
BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
PARTICULAR PURPOSE, AND NONINFRINGEMENT WITH RESPECT TO THE SOFTWARE
AND THE ACCOMPANYING DOCUMENTATION. YOU ASSUME RESPONSIBILITY FOR
SELECTING THE SOFTWARE TO ACHIEVE YOUR INTENDED RESULTS, AND FOR THE
INSTALLATION OF, USE OF, AND RESULTS OBTAINED FROM THE SOFTWARE.
WITHOUT LIMITING THE FOREGOING PROVISIONS, MCAFEE MAKES NO WARRANTY
THAT THE SOFTWARE WILL BE ERROR-FREE OR FREE FROM INTERRUPTIONS OR
OTHER FAILURES OR THAT THE SOFTWARE WILL MEET YOUR REQUIREMENTS. SOME
STATES AND JURISDICTIONS DO NOT ALLOW LIMITATIONS ON IMPLIED
WARRANTIES, SO THE ABOVE LIMITATION MAY NOT APPLY TO YOU. The foregoing
provisions shall be enforceable to the maximum extent permitted by applicable law.
7. Limitation of Liability. UNDER NO CIRCUMSTANCES AND UNDER NO LEGAL THEORY, WHETHER
IN TORT, CONTRACT, OR OTHERWISE, SHALL MCAFEE OR ITS SUPPLIERS BE LIABLE TO YOU
OR TO ANY OTHER PERSON FOR ANY INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL
DAMAGES OF ANY CHARACTER INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF
GOODWILL, WORK STOPPAGE, COMPUTER FAILURE OR MALFUNCTION, OR FOR ANY AND ALL
OTHER DAMAGES OR LOSSES. IN NO EVENT WILL MCAFEE BE LIABLE FOR ANY DAMAGES IN
EXCESS OF THE LIST PRICE MCAFEE CHAR GES FOR A LICENSE TO THE SOFTWARE, EVEN IF
MCAFEE SHALL HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THIS
LIMITATION OF LIABILITY SHALL NOT APPLY TO LIABILITY FOR DEATH OR PERSONAL
INJURY TO THE EXTENT THAT APPLICABLE LAW PROHI BITS SUCH LIMITATION.
FURTHERMORE, SOME STATES AND JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR
LIMITATION OF INCIDENTAL OR CONSEQUENTIAL DAMAGES, SO THIS LIMITATION AND
EXCLUSION MAY NOT APPLY TO YOU. The foregoing provisions shall be enforceable to the maximum
extent permitted by applic able law.
8. United States Government. Th e Software and accompanying Documentation are deemed to be "commercial
computer software" and "commercial computer software documentation," respectively, pursuant to DFAR
Section 227.7202 and FAR Section 12.212, as applicable. Any use, modification, reproduction, release,
performance, di splay or disclosure of the Software an d accompanying Do cumentation by th e U ni t ed States
Government shall be govern ed solely b y the ter ms of this Agreement and shall b e prohibite d except t o the ex tent
expressly permitted by the terms of this Agreement.
9. Export Controls. You are advised that the Software is subject to the U.S. Export Administration Regulations.
You shall not exp ort, import or transfer Software cont rary to U.S. or other applicable laws, w hether directly or
indirectly, and will not cause, app ro ve or otherwise facilitate others such as agents or any third par tie s in do ing
so. You represen t and agrees that neit her the United States Bureau of Export A dministration nor any other
federal agency has suspended, revoked or denied your export privileges. You agree not to use or transfer the
Software for end use relating to an y nuclear, chemical or biological weapons, or missile technology unless
authorized by the U.S. Government by regulation or specific license. Additionally, you acknowledge that the
Software is sub j ect to export control regulations in the E ur opean Union and you h ereby declare and agree that
the Software will not be used for any other purpose than civil (non-military) purposes. The parties agree to
cooperate w ith eac h ot he r with re spec t to any app lic at io n f or a ny req ui re d li cen ses an d ap pr ova ls, ho wev er, yo u
acknowledge it is your ultimate responsibility to comply with any and all export and import laws and that
McAfee has no further responsibility after the initial sale to you within the original country of sale.
Product Guide v
10. High Risk Activities. The Softwar e i s not fault-tolerant and is not designed o r i nt ended for use in hazardous
environments requiring fa il-safe perf ormance, including wi thout limitatio n, in the operati on of nuclear f acilities,
aircraft navigation or communication systems, air traffic control, weapons systems, direct life-support machines,
or any other application in which the failure of the Software could lead directly to death, personal injury, or
severe physical or property damage (collectively, "High Risk Activities"). McAfee expressly disclaims any
express or impli ed w arranty of fitness f o r High Risk Activities .
11. Miscellaneous. This Agreement is governed by the laws of the United States and the State of California,
without reference to conflic t o f laws principles. The application of the United Na tio ns Convention of Contracts
for the International Sa le of Goods is e xpress ly exc luded. This Agree ment se ts f orth a ll rig hts for the user of the
Software and is the entire agreement between the parties. McAfee reserves the right to periodically audit you to
ensure that you are not usi ng an y Soft ware in v io lat io n of t his Agree men t. D uri ng yo ur sta ndar d bus ine ss hour s
and upon prior wr itt en notice, McAfee may visit you and you w i ll m ake available to Mc A fee or its
representatives any records perta ining to the Softwar e to McAfee. The cost of any requeste d audit will be solely
borne by McAfee, unless such aud it di scloses an underpayment or amount due to McAfee in exce ss of five
percent (5%) of the initial li cens e f ee fo r th e S of twar e or y ou ar e usin g the Software in an unauthorized manor,
in which case you shall pay the cost of the au di t. This Agreement supersedes any other communications w ith
respect to the Software and Documentation. This Agreement may not be modified except by a written addendum
issued by a duly authorized representative of McAfee. No provision hereof shall be deemed waived unless such
waiver shall be in writing and signed by McAfee or a duly authorized representative of McAfee. If any provision
of this Agreement is held invalid, the remainder of this Agreement shall continue in full force and effect. The
parties c onfirm th a t it is their wish that this Agreement has been writ ten in the English language on ly.
12. MCAFEE CUSTOMER CONTACT. If you have any questions concerning these terms and conditions, or if
you would like to contact McAfee for any other reason, please call (408) 988-3832, fax (408) 970-9727, or write:
Network Associ ates, Inc., McAfee Software Division, 3 965 Freedom Circle, Santa Clara, Califo rn ia 95054.
http://www.nai.com.
vi McAfee Firewall 4.0
McAfee Perpetual End User License Agr eement – Canada
NOTICE TO ALL USERS: CA REFULLY READ THE FOLLOWING LEGAL AGREEMENT
("AGREEMENT"), FOR THE LICENSE OF SPECIFIED SOFTWARE ("SOFTWARE") BY NETWORK
ASSOCIATES INTERNATIONAL B.V. ("McAfee"). BY CLICKING THE ACCEPT BUTTON OR
INSTALLING THE SOFTWARE, YOU (EITHER AN I NDIVIDUAL OR A SINGLE ENTITY)
CONSENT TO BE BOUND BY AND BECOME A PARTY TO THIS AGREEMENT. IF YOU DO NOT
AGREE TO ALL OF THE TER MS OF THIS AGREEMENT, CLICK THE BUTTON THAT
INDICATES THAT YOU DO NOT ACCEPT THE TERMS OF THIS AGREEMENT AND DO NOT
INSTALL THE SO FTWARE. (IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO THE
PLACE OF PURCHASE FOR A FULL REFUND.)
1. License Grant. Subject to the payment of the applicable license fees, and subject to the terms and conditions of
this Agreement, McAfee hereby grants to you a non-exclusive, non-transferable right to use one copy of the
specified version of the Software and the accompanying docume ntation (the "Documenta tion"). You may instal l
one copy of t he S oftwar e on one co mpute r, w orkst atio n, pe rsona l di gita l ass istan t, pa ger, "sma rt ph one" or ot her
electronic device for which the Software was designed (each, a "Client Device"). If the Software is licensed as
a suite or bundle with more than one specified Software product, this license applies to all such specified
Software produ ct s, subject to any restri ct ions or usage terms specified on the applicable price list or product
packaging that apply to any of such Software products individually which you acknowledge you have received
and read.
a. Use
b. Server-Mo de U se
. The Software is licensed as a single product; it may not be used on more than one Client Device
or by more than one user at a time, except as set forth in this Sectio n 1 . The S o ftwa re is "in use" on a
Client Device when it is l oaded into th e temporary memory (i.e. , random-a ccess memory or RAM) or
installed into the permanent memory (e.g., hard disk, CD-ROM, or other storage device) of that Client
Device. This license authorizes you to make one copy of t he Software solely for backup or archiv al
purposes, p rovided t hat th e copy yo u make co ntains all of the Sof tware' s propri etar y notice s unalt ered
and unobstructed.
. You may use the Software on a Client Device as a server ("Se rver") within a
multi-user or n et wor ke d en vi ronm ent (" Se rver -Mo de" ) on ly if s uch use is pe rmit te d i n the a p pl icab le
price list or prod uc t p ack ag in g f or t he S of twar e w hic h y ou a ck now le dge y o u hav e r ec eive d and r ea d.
A separate licens e is required for each Client Device or "s eat" that may connect to the Server at any
time, regardless of whether such licensed Client Devices or seats are concurrently connected to,
accessing or using t he Software. Use of software or hardware th at reduces the number of Client
Devices or seats directly accessing or utilizing the Software (e.g., "multiplexing" or "pooling"
software or hardware) does not reduce the number of licens es required (i.e., the required number of
licenses would equal the number of distinct inputs to the multiplexing or pooling software or hardware
"front end"). If the number of Client Devices or seats that can connect to the Software can exceed the
number of lice nses yo u have obt ained, then you m ust have a reasona ble mecha nism in pl ace to ensure
that your use of the Software does not exceed the use limits specified for the licenses you have
obtained. This license authorizes you to make or download one copy of the Documentation for each
Client Devi ce or sea t that i s licensed , provi ded that each such c opy cont ains all of the Doc umentati on's
proprietary noti ce s unaltered and unobst ructed.
Product Guide vii
c. Volume License Use. If the Software is licensed with volume lic ense terms specified in t he applicable
price list or product packaging for the Software, you may make, use and install as many additional
copies of the Softw ar e on the number of Client D evices as the volume license authorizes. Y ou must
have a reasonable mechanism in place to ensure that t he number of Clien t Devices on which the
Software has been installed does not exceed the number of licenses you have obtained. This license
authorizes you to m ake or download one co py of the Documentation for each additional copy
authorized by th e volume license, provided that each su ch copy contains all o f t he D ocumentation' s
proprietary notices unaltered and unobstructed.
2. Term. This Agreement is effective for an unlimited duration unless and until earlier terminated as set forth
herein. This Agreement will terminate automatically if you fail to comply with any of the limitations or other
requirements described herein. Upon any termination or expiration of this Agreement, you must cease use of the
Software and destroy all copies of the Software an d the Documentat ion.
3. Updates. For th e time period specified in the applicable price list or prod uct packaging for the Software, you are
entitled to download revisions or updates to the Software when and as McAfee publishes them via its electronic
bulletin board system, website or through other online services. For a period of ninety (90) days from the date
of the of origina l pu rchase of the Software, you are entitled to download one (1) revision or upgrade to the
Software whe n and as McAfee publi shes it via its electro nic bulletin board system, websit e or through other
online services. After the specified time period, you have no further rights to receive any revisions or upgrades
without purchase of a new license to the Software.
4. Ownership Ri ghts. The Software is prot ected by United State s co pyright laws and int er national treaty
provisions. McAfee and its suppliers o wn and retain all right, title and intere st in and to the Software, in cludin g
all copyrights, patents, trade secret rights, trademarks and other intellectual property rights therein. Your
possession, installatio n, or us e of the Software does not trans fer to you any title to the in tellectual p roperty in the
Software, and you will not acquire any rights to the Software e xcept as e xpressly s et for th in thi s Agreement. All
copies of the Software and Documentation made hereunder must contain the same proprietary notices that appear
on and in the Softw ar e and Documentati on.
5. Restrictions. You may not sell, leas e, license, rent, lo an or otherwise transf er, with or without consid eration, the
Software. Mc A fee updates its Soft ware frequently and performance dat a for its Software change. Before
conducting be nchmark tests rega rding this Softwa re, contact McAfe e to verify that You possess the correct
Software for the test and the then current version and edition of the Software. Benchmark tests of former,
outdated or inappropriate versions or editions of the Software may yield results that are not reflective of the
performance of the current version o r edition of the Software. You agree not to permit any thir d party (other than
third parties under contract with you which contract contains nondisclosure obligations no less restrictive than
those set forth herein) to use the Software in any form and shall use all reasonable efforts to ensure that there is
no improper or un aut horized use of the Sof tware. You may not per m it third parties to benefit from the use or
functionalit y of the Software via a timesharing, service bureau o r other arrangement, except to the extent such
use is specified in th e applicable list pri ce or product packag in g for the Software. Y ou m ay not transfer any of
the rights granted to you under this Agreement. You may not reverse engineer, decompile, or disassemble the
Software, except to the extent the foregoing restriction is expressly prohibited by applicable law. The interface
information necessary to achieve interopera bility of the Software with indep endently created comp uter programs
will be supplied by McAfee on reque st and on payment of suc h reasonable costs and expenses of McAfee in
supplying th at i nfor mat i on. Yo u ma y not m odif y, or cre a te de ri vati ve work s ba sed up on, th e Sof twar e in whol e
or in part. You may not copy the Software or Documentation except as expressly permitted in Section 1 above.
You may not remove or alter any proprietary notices or labels o n the Softwa re or Documen tation . All righ ts not
expressly set fo rth hereunder are reserved by McA f ee.
6. Warranty and Disclaimer.
viii McAfee Firewall 4.0
a. Limi ted Warranty. McAfee warrants that for sixty (60) days from the date of original purchase the
media (e.g., diskettes) on which the Software is contained will be free from defects in materials and
workmanship.
b. Customer Remedies
. McAfee's and its suppliers' entire liability and your exclusive remedy for any
breach of the fo regoing warranty s hall be, at McAfee' s option, either (i) re t urn of the purchase price
paid for the license, if any, or (ii) replacement of the defective media in which the Software is
contained. You m us t r et ur n the defective media to M cAfee at your expense w ith a copy of your
receipt. This limited war ranty is void if the defect has resu lted from acciden t, abuse, or misapp lication.
Any replacement media will be warran te d for the remainder of the original warranty period. Outside
the United States, this remedy is not available to the extent McAfee is subject to restrictions under
United States export control laws and regulations.
c. Warranty Disclaimer
. Except for the limited warranty set forth herein, THE SOFTWARE IS
PROVIDED "AS IS." TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW,
MCAFEE DISCLAIMS ALL WARRANTIES, REPRESENATIONS AND CONDITIONS,
EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LI M ITED TO IMP LI ED
WARRANTIES OR CONDITIONS OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
PURPOSE, AND NONINFRINGEMENT WITH RESPECT TO THE SOFTWARE AND THE
ACCOMPANYING DOCUMENTATION. YOU ASSUME RESPONSIBILITY FOR SELECTING
THE SOFTWARE TO ACHIEVE YOUR INTENDED RESULTS, AND FOR THE
INSTALLATION OF, USE OF, AND RESULTS OBTAINED FROM THE SOFTWARE.
WITHOUT LIMITING THE FOREGOING PROVISIONS, MCAFEE MAKES NO WARRANTY,
REPRESENTATION OR CONDITION THAT THE SOFTWARE WILL BE ERROR-FRE E OR
FREE FROM INTERRUPTIONS OR OTHER FAILURES OR THAT THE SOFTWARE WILL
MEET YOUR REQUIREMENTS. SOME STATES AND JURISDICTIONS DO NOT ALLOW
LIMITATIONS ON IMPLIED WARRANTIES, SO THE ABOVE LIMITATION MAY NOT
APPLY TO YOU.
7. Limitation of Liability. UNDER NO CIRCUMSTANCES AND UNDER NO LEGAL THEORY, WHETHER
IN TORT, CONTRACT, OR OTHERWISE, SHALL MCAFEE OR ITS SUPPLIERS BE LIABLE TO YOU
OR TO ANY OTHER PERSON FOR ANY INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL
DAMAGES OF ANY CHARACTER INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF
GOODWILL, WORK STOPPAGE, COMPUTER FAILURE OR MALFUNCTION, OR FOR ANY AND ALL
OTHER DAMAGES OR LOSSES. IN NO EVENT WILL MCAFEE BE LIABLE FOR ANY DAMAGES IN
EXCESS OF THE LIST PRICE MCAFEE CHAR GES FOR A LICENSE TO THE SOFTWARE, EVEN IF
MCAFEE SHALL HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THIS
LIMITATION OF LIABILITY SHALL NOT APPLY TO LIABILITY FOR DEATH OR PERSONAL
INJURY TO THE EXTENT THAT APPLICABLE LAW PROHI BITS SUCH LIMITATION.
FURTHERMORE, SOME STATES AND JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR
LIMITATION OF INCIDENTAL OR CONSEQUENTIAL DAMAGES, SO THIS LIMITATION AND
EXCLUSION MAY NOT APPLY TO YOU. The foregoing provisions shall be enforceable to the maximum
extent permitted by applic able law.
8. United States Government. The Software and accompanying Documentation are deemed to be "commercial
computer software" and "commercial computer software documentation," respectively, pursuant to DFAR
Section 227.7202 and FAR Section 12.212, as applicable. Any use, modification, reproduction, release,
performance, di splay or disclosure of the Software an d accompanying Do cumentation by th e U ni t ed States
Government shall be govern ed solely b y the ter ms of this Agreement and shall b e prohibite d except t o the ex tent
expressly permitted by the terms of this Agreement.
Product Guide ix
9. Export Controls. You have been advised that the Software is subject to the U. S. Export Administrat ion
Regulations and applicable loca l export contro l laws. Yo u shall not export, import or trans fer Pro ducts con trary
to U.S. or other applicable local laws , whether directly or indirectly, and will not cause, approve or otherwise
facilitate others such a s agen ts or an y third par ties i n doing s o. If appl icable to you, you re present a nd agr ee that
neither the Uni ted S tates Bureau of Expo rt Admi nistr atio n nor any other fe dera l agenc y has suspend ed, r evoked
or denied your export privileges. You agree not to use or transfer the Software for end use relating to any nuclear,
chemical or biological weapons, or missile technology unless authorized by the U.S. Government and any other
applicable local authority by regula tion or specifi c license. Additionall y, you acknowledge tha t the Software is
subject to exp ort cont rol reg ul at ion s in t he Eur ope an Unio n an d you he reb y de cl are an d ag ree t hat the Sof twar e
will not be used for any other purpose than civil (non-military) purposes. The parties agree to cooperate with
each other with respect to any application for any required licenses and approvals, however, you acknowledge it
is your ultimate responsibi lity to comply with any and all e xport and import laws and that McAfee has no furthe r
responsibility after the initial sale to you within the original country of sale.
10. High Risk Activities. The Software is not fault-tolerant and is not designed o r i nt ended for use in hazardous
environments requiring fa il-safe perf ormance, including wi thout limitatio n, in the operati on of nuclear f acilities,
aircraft navigation or communication systems, air traffic control, weapons systems, direct life-support machines,
or any other application in which the failure of the Software could lead directly to death, personal injury, or
severe physical or property damage (collectively, "High Risk Activities"). McAfee expressly disclaims any
express or implied warranty or condition of fitness for High Risk Activities.
11. Miscellaneous. This Agreement is governed by the la w s o f t he N etherlands. The app lication of the United
Nations Conven tion of Contract s for the In ternation al Sale of Goods is ex pressly ex cluded. D isputes wi th respe ct
to this Agreement, as well as with respect to its conclusion and execution, will be submitted exclusively to the
competent court in Amsterdam. This Agreement s ets forth al l rights for the user of the Soft ware and is the ent ire
agreement between the parties. McAfee reserves the right to periodically audit you to ensure that you are not
using any Software in violation of this Agreement. During your standard b us iness hours and upon prior written
notice, McAfee may visit you and yo u w i ll m ake available to McAfee or its represe nt at ives any records
pertaining to the Software to McAf ee. The cost of any req ues ted audit will be solely borne by McAfee, unless
such audit discloses an underpayment or amount due to McAfee in excess of five percent (5%) of the initial
license fee for the Software or you are using the Software in an unauthorized manor, in which case you shall pay
the cost of the audit. This Agreement supersedes any other communications with respect to the Software and
Documentation. This Agreement may n ot be modified except by a writt en addendum issued by a duly authori zed
representative of McAfee. No pr ovi s ion hereof shall be deemed waived un le ss such waiver shall be in writing
and signed by McA fee or a d uly auth orize d rep rese ntati ve o f McAf ee. I f an y pr ovis ion of thi s Ag reeme nt is hel d
invalid, the remainder of this Agreement shall continue in full force and effect. The parties have required that
this Agreement and all documents relating thereto be drawn up in English. Les parties ont demandé que cette
convention ainsi que tous les doc um ents que s'y attachent soient rédigés en anglais.
12. MCAFEE CUSTOMER CONTACT. If you have any questions concerning these terms and conditions, or if
you would like to contact McAfee for any other reason, pl ease call +31 20 586 61 00 or write: McAfee,
Gatwickstraat 25, 1043 GL Amsterdam, Netherlands. You will find our In ternet web-site at http:// www.nai.com.
x McAfee Firewall 4.0
Contents
1
Welcome to McAfee Firewall 4.0 . . . . . . . . . . . . . . . . . . . . . . . . . . 13
What’s new in this release? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
How McAfee Firewall works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
About this manual . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Frequently asked questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
2
Installing McAfee Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
System requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Installation steps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Troubleshooting installation problems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Removing or modifying your McAfee Firewall installation . . . . . . . . . . . . . . . . . . . . . . . . . 24
Important information about Windows XP migration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
3
Getting Started with McAfee Firewall . . . . . . . . . . . . . . . . . . . . . . 25
The Configuration Assistant . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
The McAfee Firewall Home page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
The Title bar and Tool bar . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Status information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
The Task pane . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Other McAfee Firewall features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
4
McAfee Firewall Configurations . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Program configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
System configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
5
McAfee Firewall’s Intrusion Detection System . . . . . . . . . . . . . . 43
About Intrusion Detection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
How to Configure the Intrusion Detection System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Common attacks recognized by IDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Product Guide xi
Contents
6
A
Updating McAfee Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
About Instant Updater . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Instant Updater features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
How to contact McAfee . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
About www.McAfee-at-Home.com . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Customer Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Technical support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
xii McAfee Firewall 4.0
Welcome to McAfee Firewall 4.0
Protect yourself while online with the advanced security of McAfee Firewall.
Easy-to-use, yet highly configurable, McAfee Firewall secures your PCs
connection to the Internet whether you connect via DSL, cable modem or
dial-up. With intrusion detection, color coded security alerts, customizable
audible alerts, detailed logging, and an application scan for Internet enabled
applications, McAfee Firewall gives you the power you need to control the
communications into and out of your PC, ensuring tha t your online experience
is as safe as it is enjoyable.
McAfee Firewall:
n Controls file and print share access.
n Shows who is connecting to your computer if you allow sharing.
n Stops floods and other attack packets from being received by the
Operating System.
n Blocks untrusted applications from communicating over the network.
n Provides detailed information about which sites you have contacted and
the type of connection that was made.
1
n Can be set to block all traffic or traffic from a spec ific IP address
immediately.
What’s new in this release?
n Firewall security check: Examines yo ur security sett i ngs for possible
vulnerabilities.
n Enhanced hacker tracin g with the addition of McAfee’s Visual Trace
technology.
n Intrusion Detection System: Detects common attack types and
suspicious activity.
n Home networking wiza rd: Set up protection for personal computers
sharing an Internet connection.
n Wizard for creating custom rules: Create custom configurations for
specific programs.
Product Guide 13
Welcome to McAfee Firewall 4.0
n Password protection: Prevent others from tampering with your firewall
n Improved support for broadband connections.
n Usability enhancements: McAfee Firewall 4.0 includes many user
settings using password protection.
interface enhancements to make it easier than ever to secure your
computer.
14 McAfee Firewall 4.0
How McAfee Firewall works
McAfee Firewall is a simple-to-operate security tool that dynamically
manages your computing security behind the scenes.
Setup
During the installation process, the Configuration Assistant prompts you with
basic questions to set up McAfee Firewall to do specific tasks – according to
your needs (e.g. allow sharing of files or not).
Operation
McAfee Firewall filters traffic at the devices that your system uses - network
cards and modems. This means that it can reject inbound traffic before that
traffic can reach vital functi ons in your com puter and waste valuable syste m
resources.
McAfee Firewall – the Gatekeeper
When McAfee Firewall is running, it monitors trusted and untrusted
programs that communicate using the Internet. If a trusted application
attempts to communicate, M cAfee Firewall allows the prog ram to function
without restrictions. If an untrusted program atte mpts to communicate into or
out of your computer, McAfee Firewall blocks the program’s attempt to
communicate via the Internet.
Welcome to McAfee Firewall 4.0
Configuration
Some network communications are needed to maintain network-based
services. These are managed through user defined rules under the system
settings of McAfee Firewall. The default system settings feature provides
superior protection from hostile threats.
About this manual
This manual provides the basic information you need to install, set up and get
started with McAfee Firewall. More detailed information about how to
perform tasks within McAfee Firewall is provided via online Help. You can
get Help while working with the different windows and dialog boxes. You can
also review the Readme.txt file which contains other general information,
known issues, etc., about this product.
Product Guide 15
Welcome to McAfee Firewall 4.0
Frequently asked questions
The following are some frequently asked questions that you can briefly
review:
How will McA fe e Fi re wall h e lp me?
McAfee Firewall protects your computer at the network level. It acts as a
gatekeeper, checking every data packet going in or out of your PC. It allows
only what you tell it to allow.
McAfee Firewall has been designed to be easy to use, while providing superior
protection. Once you install and run it, it is configured to block known attacks
and to ask you before allowing applications to communicate.
How is my PC at r isk o n th e Int e rnet ?
When you connect to the Internet, you share a network with millions of people
from around the world. While the Internet is a wonderful and amazing
accomplishment, it brings with it all the problems of being accessible to
complete strangers.
While communicating via the Internet, you should take safety precautions to
protect your computing environment. If you use IRC (Internet Relay Chat)
programs, be suspicious of files total strangers send you. Programs that give
others remote access to your computer, such as Back Orifice (BO), are
frequently disseminated in this manner. It is a good practice to scan files
received using anti-virus programs such as McAfee VirusScan before you
open or view files and their attachments.
16 McAfee Firewall 4.0
When on the Internet, others can try to acce ss your f ile sha res. Therefore, you
should check that they are only accessible to those you trust. Otherwise,
untrusted parties can read and delete what is in you r c o mputer.
What other protection do I need?
McAfee Firewall provides network level protection. Other important types of
protection are:
n Anti-virus programs for application-level protection.
n Logon screens and screen saver passwords to prevent unauthorized
access.
n File encryption or encrypting file systems to keep information secret.
n Boot-time passwords to stop someone else from starting your PC.
n Physical access to the computer, e.g. stealing the hard drive.
Welcome to McAfee Firewall 4.0
A separate but also important issue is controlling access to information,
misinformation and “filth” that is widely available on the Internet. You can
use a number of content-filtering services or programs such as McAfee’s
Internet Security that can filter th e contents of data packets or r estrict access to
certain sites.
Are there any data packe ts tha t McAfe e Firewa ll canno t stop?
Inbound Data: No. As long as McAfee Firewall supports a network device
and is running, it is intercepting all incoming packets and will allow or block
according to the way you have it configured. If you choose to block
everything, it will.
Outbound Data: Yes and no. McAfee Firewall intercepts outbound data
packets as they are passed to the network device driver. All popular
applications communicate this way. A malicious program could communicate
by other means, however.
What network devices does McAfee Firewall support?
McAfee Firewall supports Ethernet and Ethernet-like devices. This includes
dial-up connections, most cable and ISDN modems and most Ethernet cards.
It does not support Token Ring, FDDI, ATM, Frame Relay and other networks.
What protocols can McAfee Firewall filter?
McAfee Firewall can filter TCP/IP, UDP/IP, ICMP/IP and ARP. It intercep ts
all protocols, but others, such as IPX, must be either allowed or blocked - no
filtering is done. The Internet uses the IP protocols. No others are sent. Also,
IP networks are the most common.
How can I stil l b e ha ras sed , ev en w i th Mc Afe e F i rewa ll ?
Many people use McAfee Firewall to block the “nukes” that cause their IRC
connections to be broken. While McAfee Firewall blocks the nukes, there are
other ways that attackers can still cause the connections to be broken:
n Server-side nuking. This is when the "nukes" are sent to the IRC server,
not to your computer, telling the server that you can no longer be
reached. To prevent this, the IRC server needs a firewall.
n Flood blocking a TCP connection. If a flood of packets is sent to you
from a higher speed connection, McAfee Firewall can stop the packets,
but the flood takes up all your bandwidth. Your system does not get a
chance to send anything. Dial-up users are particularly vulnerable since
they have the lowest speed connections.
TIP
To read additional frequently asked questions, refer to the
Readme.txt file.
Product Guide 17
Loading...