It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Barracuda CloudGen Firewall

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

Default Forwarding Firewall Rules

Last updated on 2024-08-23 05:15:39

The Forwarding Firewall ruleset contains default rules that fit most applications and services that are handled by the Barracuda CloudGen Firewall. The following table lists all Forwarding Firewall rules that are preconfigured for Cloud instances.

Default Forwarding Firewall Rules for Cloud Instances

#	Default State	Type	Name	Comment
0	Disabled	Block	BlockATDQuarantine	Blocks infected hosts that are block-listed by ATP
1	Enabled	App Redirect	CLOUD-SETUP-MGMT-ACCESS	Redirect incoming management traffic on the DHCP interface to the management IP address.
2	Disabled	App Redirect	CLOUD-LB-PROBE	Redirect probes from the load-balancer TCP port 6500 to fwauth on port 450.
3	Enabled	Pass	CLOUD-NET-2-INTERNET	Allow all traffic from the detected subnets of the virtual network or VPC to the Internet.
4	Enabled	Pass	CLOUD-NET-2-CLOUD-NET	Allow all traffic between the detected subnets of the virtual network or VPC.
5	Disabled	Pass	CLOUD-NET-2-VPN-SITE	Allows all traffic between the detected local cloud networks and remote networks of VPN site-to-site tunnels.
6	Enabled	Pass	CLOUD-NET-2-VPNCLIENTS	Allows unrestricted access for Barracuda Network Access Clients coming in through interface pvpn0 to the trusted LAN. Note that PPTP-based access is not included in this rule.
7	Enabled	Pass	DNS-SERVERS-2-INTERNET	Allows DNS servers to access the Internet.
8	Enabled	Block	BLOCKALL	Blocks all IP traffic.