The Barracuda SecureEdge Manager allows administrators with appropriate permissions to configure Web Filter policies to protect against potential threats and enforce corporate policies. Barracuda Networks provides a large database, organized in categories, for web filtering. You can either use the provided categories to create rules, or you can specify the domains yourself. Malicious URLs are blocked in the default configuration. For example, web filtering is set to allow all and to block only defined exceptions, whereas the corresponding ACL is set to block all and to allow only defined exceptions.
A filter rule either blocks or allows a domain, category or custom category from any source, whereas an explicit rule blocks or allows URLs from specified sources. In addition, for the web filter rule, you can now either alert or warn users against suspicious traffic.
The following actions are available for the Web Filter policy :
Allow – The user can access the website.
Block – The user is blocked from viewing the website.
Alert – The user is allowed to access websites in this category, but the action is silently logged.
Warn – The user is redirected to a warning page and must click Continue to access the requested website. For example, a web filter rule exists with SSL Inspection enabled and with a Warn action for different types of selected URL categories (such as social media and lottery). If a user visits a website that matches the filter rule, it allows access to the specific URL categories and/or websites. However, a warning page is shown. When a user clicks Continue in the browser, it will implicitly cause a security inspection.
Create a Web Filter Policy
Go to https://se.barracudanetworks.com and log in with your existing Barracuda Cloud Control account.
In the left menu, click the Tenants/Workspaces icon and select the workspace you want to create a web filter policy for.
Go to Security Policy.
Expand the Web Filter menu on the left and select Policies.
The Policies window opens. To create a new rule, click Add Rule.
The Add New Rule window opens.
In the SETTINGS tab, specify values for the following:
Name – Enter a unique name.
Description – Enter a brief description.
Action – Select the action. You can choose between Allow, Block, Alert, and Warn.
If you select Action = Block, you are provided with the option to silently block the rule:Silent – Click to enable/disable. By default, Silent field is disabled.
If you select Action = Allow or Alert or Warn, the Silent field is disabled.
Type – Select the type. You can choose between Category, Domain, and Custom Category.
If you select Category, expand the category and click on the specific sub-categories you want to allow/block. Additionally, you are also provided with option Select All to select all sub-categories.
If you select Domain, enter one or more domains and click +.
If you select Custom Category, select a custom category from the drop-down menu, or type to search.
Scroll down to add more categories and click Save.
After the configuration is complete, you can see a new policy has been created on the Policies page with all your selected categories and sub-categories. For example, in this case, expand Adult Material and verify your categories and sub-categories.
Edit an Existing Web Filter Policy
Go to https://se.barracudanetworks.com and log in with your existing Barracuda Cloud Control account.
In the left menu, click the Tenants/Workspaces icon and select the workspace you want to edit a web filter policy for.
Go to Security Policy.
Expand the Web Filter menu on the left and select Policies.
The Policies window opens. Click on the pencil icon next to the rule you want to edit.
The Edit Rule window opens. Edit the value you are interested in.
Click Save.
Remove an Existing Web Filter Policy
Go to https://se.barracudanetworks.com and log in with your existing Barracuda Cloud Control account.
In the left menu, click the Tenants/Workspaces icon and select the workspace you want to remove a web filter policy for.
Go to Security Policy.
Expand the Web Filter menu on the left and select Policies.
The Policies window opens. Click on the trash can icon next to the rule you want to remove.
The Delete Rule window opens.
Click OK to confirm.
Select the Default Action
You can configure web filtering either to allow or block traffic by default. In addition, you can now set Default Action to Alert.
Go to https://se.barracudanetworks.com and log in with your existing Barracuda Cloud Control account.
Go to Security Policy.
Expand the Web Filter menu on the left and select Policies.
In the SETTINGS section, select the Default Action.
Additional Information
Reporting
You can create reports and notifications using an Azure Log Analytics workspace. Your Barracuda SecureEdge service must be connected to the Azure Log Analytics workspace via the Azure Monitor Agent. The Azure Monitor Agent is used to stream logs to a Microsoft Log Analytics workspace. The Azure Monitor Agent is supported on SecureEdge appliances such as Sites and Private Edge Services.
For more Information, see:
How to Configure Log Streaming to Microsoft Azure Log Analytics Workspace.
How to Configure Log Streaming via Azure Monitor Agent in SecureEdge.
Further Information
For more information on User and Groups, see How to Connect Microsoft Entra ID with Barracuda Cloud Control.