It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda SecureEdge

Policies

  • Last updated on

Barracuda SecureEdge allows administrative users with appropriate permissions to configure policies to protect internal resources and to secure access from and to the company network. Policies, rules, and access control lists are (pre-)defined rules for handling network traffic and are centrally managed throug https://se.barracudanetworks.com. Policies are automatically applied to all site appliances. Since updates  are pulled from the site appliances in 1-minute intervals, it might take up to 8 minutes until the updates apply.

Policies are being applied by (re-)writing dns records for the SecureEdge agent, it is therefore possible that previously visited pages (i.e., for which a DNS cache entry exists on the agent machine) remain unblocked for several hours, even though there is a blocking security policy configured.

Network Policies

Configure network policies to allow or deny access based on source and destination. You can create access control lists (ACLs) for networks, users, and sites, using either predefined or custom applications. For more information on custom applications, see How to Create Custom Applications. If you want to select users or groups in the policies, you must first connect your Microsoft Entra ID. For more information, see How to Connect Microsoft Entra ID with Barracuda Cloud Control.

net_pol.png

The following access control lists are available:

  • Edge Service ACL 
  • Site ACL

For more information, see Network Policies.

Security Policies

The default action of a security policy can, for example, be either to block all and define exceptions that are allowed, or to allow all and define exceptions that are blocked. You can change the default action for all security polices individually. For example, web filtering is set to allow all and define exceptions that are blocked, and ACL is set to block all with exceptions that are allowed. 

ATP.png

The following security policies are available:

  • Advanced Threat Protection
  • SSL Inspection
  • IPS

Some policies come with preconfigured default rules. In this case, explicit rules have precedence over predefined ones.

The matching algorithm of the rules works as follows:

  1. All rules (explicit and default) apply top down. That means the first rule in the list that matches applies. Rules below the first match will not apply.
  2. First, the explicit rules are searched for matches. If there is an explicit rule that matches, this explicit rule will be used. 
  3. Otherwise, the default rules are searched, and if there is a rule that matches, this rule will be used. 

For more information, see Security Policies.

Access Policies

A zero trust access policy defines the resources made available to end users of the Barracuda SecureEdge Agent and the associated access restrictions. 
zta_policy_page.png
For more information, see Zero Trust Access Policies.

Apps and Resources

You can create custom application allow you to extend the predefined application used by the defined policies. There are two types of custom applications:

  • Custom Network Applications
  • Custom Web Applications 

sec_apps_resources.png

For more information, see How to Create Custom Applications.