A shared service is configured on the cluster level. The service must first be created on the Barracuda Firewall Control Center Shared Services folder and then added to the individual firewalls in the cluster.
Step 1. Create a Shared Service
- Go to CONFIGURATION > Configuration Tree > Multi-Range > your range > your cluster.
- Expand your desired cluster, right-click Shared Services, and select Create Shared Service.
- Enter a name for the service.
- Select the type of shared service from the Software Module list:
- Distributed Firewall – For more information, see Distributed Firewall.
- Distributed SNMP – For more information, see How to Configure the SNMP Service.
- (optional) Specify the following parameters for the shared service (click Next and Back to navigate between the configuration pages):
- Administered by – The administrators allowed to manage the cluster. You can select:
- all-authorized (default) – Permits management for each configured administrator.
- restricted-set – Lets you explicitly define the administrators who are allowed to manage the cluster.
- Privileged Admins – Click + and enter the Barracuda Firewall Admin login names of the corresponding administrators.
- Configure Statistics Settings.
- Administered by – The administrators allowed to manage the cluster. You can select:
- Click Finish.
- Click Activate.
The shared service is added to the Shared Services node on the cluster it has been created for.
Step 2. Add the Shared Service to your Firewalls
Add the shared service as a cluster service to the boxes in the same cluster.
- Go to CONFIGURATION > Configuration Tree > Multi-Range > your range > your cluster.
- Right-click the Boxes node and select Add Shared Service to all Boxes.
- Select the shared service you want to add and click OK.
- Click Activate.
(optional) To add the shared service to one Barracuda CloudGen Firewall in the cluster, e.g., for testing purposes:
- Expand Multi-Range > your range > your cluster > your box.
- Right-click Assigned Services and select Add Shared Service.
- Select the shared service from the list.
- Click OK.
- Click Activate.
The shared service is now added to the Assigned Services on the boxes it has been assigned to. Service nodes are linked to the unique shared service below the Shared Services node and can be configured globally. The <Distributed Firewall_name> (Distributed Firewall-Service) Specific node must be configured below the service directly because settings made here apply per box and not per cluster (see: Local Rules section and Special Rules section in Distributed Firewall).