Barracuda SecureEdge supports regular and automatic firmware updates for your connected appliances. With the SecureEdge Manager, the cloud-based management portal, your deployed Sites or Edge Services will automatically be updated to the latest firmware version. For more information on the update process, see Updates. However, if you need to update the firmware manually, refer to the article How to Recover a SecureEdge Hardware Appliance with a USB Flash Drive.
Important Information
Note that to reach a maximally homogeneous SecureEdge network, newly deployed sites will automatically update/align their firmware version to the SecureEdge Edge Services they are connecting to. This will happen regardless of the defined update window on the Barracuda SecureEdge Manager. This mechanism is in place to prevent attaching sites to the SecureEdge network with potentially outdated and/or incompatible firmware versions.
For the TLS inspection policy, Barracuda SecureEdge currently support TLS version 1.2.
To use the SecureEdge Agent fallback port (TCP 443) and IKEv2 tunnels (UDP 500 and UDP 4500) on your existing Edge Service for Virtual WAN, you may have to redeploy your Edge Service for Virtual WAN. To verify that the ports are enabled on your Edge Service for Virtual WAN, run the command:
telnet<public IP of NVA>443.Important Note related to ACL rules:
For ACL rules: Selecting source or destination criteria to all sites and all private Edge Services results in the same networks configured on the box. This is a known issue and affects the following:
All users with at least one private Edge Service. However, there is no effect if you have other Edge Services or sites.
All security policies using the object ALL-Sites as source or destination match all LANs from all private Edge Services in the same workspace in addition to all site LANs. It should contain only site LANs, but this might affect existing policies, so you must adjust accordingly. This is a known issue.
There is a new object called Private Edge Service that also contains all sites and private Edge Service LANs. You can use this object only when a new policy is configured. This should use only specific LANs. This is a known issue.
Important Note related to Backward-Compatibility
If you configure a WARN or ALERT policy on Barracuda SecureEdge, it will be converted to a BLOCK policy on appliances running firmware version 8.3.x or 9.0.0.
Please make sure to update your SecureEdge Agent to the latest version 1.0.3 before you update the point of entry to the firmware version of 9.0.1 or above.
Migration Information for 9.0.3
When migrating to Barracuda SecureEdge version 9.0.3, refer to the sections below to learn about what you need to consider:
Verify that you have the latest firmware installed on your appliances. For more information on the update process, see Updates.
For more information on product features, read the 9.0.3 Release Notes.
Migration Information for 9.0.2
When migrating to Barracuda SecureEdge version 9.0.2, refer to the sections below to learn about what you need to consider:
Verify that you have the latest firmware installed on your appliances. For more information on the update process, see Updates.
For more information on product features, see 9.0.2 Release Notes.
Migration Information for 9.0.1
When migrating to Barracuda SecureEdge version 9.0.1, refer to the sections below to learn about what you need to consider:
Verify that you have the latest firmware installed on your appliances. For more information on the update process, see Updates.
For more information on product features, see 9.0.1 Release Notes.
Migration Information for 9.0.0 - Initial Firmware Release
The initial release of Barracuda SecureEdge marks the product launch.
When migrating from Barracuda CloudGen WAN, you can switch to the new interface by expanding your login name and selecting View New SecureEdge Experience.
For information on general product features, read the 9.0.0 Release Notes - Initial Release.
For setup instructions, see Getting Started.