Glossary
- 3DES
-
Symmetric-key block cipher used in data encryption that applies the Data Encryption Standard (DES) cipher algorithm three times to each data block.
- 802.11n
-
Wireless networking standard that uses multiple antennas to increase data rates.
- 802.1q VLAN
-
IEEE 802.1Q is a standard for virtual LANs (VLANs) on an Ethernet network that defines VLAN tagging for Ethernet frames and frame handling for bridges and switches, and contains provisions for a quality of service prioritization scheme (IEEE 802.1p). It also defines the Generic Attribute Registration Protocol.
- accelerator
-
A hardware addition to an existing computing device that increases the computer's processing speed and capabilities.
- Active Directory
-
A directory service that Microsoft developed for Windows domain networks and that is included in most Windows Server operating systems as a set of processes and services.
- add-in
-
Software utility that can be used in conjunction with a device or service; for example, Barracuda Outlook Add-In.
- add-on
-
A piece of software that enhances another software application and usually cannot be run independently.
- Advanced Persistent Threat
-
Malicious cyber attacks directed at a specific target, usually over a long period of time. APTs are often run by professional organizations, looking to steal information rather than just money.
- Amazon Web Services
-
Amazon's public cloud platform that lets you build, deploy, and manage applications across a global network of datacenters.
- AMI
-
AWS template that contains configuration, application server, and applications required to launch an EC2 AWS Instance.
- Android
-
Mobile device operating system. Compare to Apple iOS.
- anti-evasion
-
Protection against network attacks that combine several different known evasion methods to create a new technique that is delivered over several layers of the network simultaneously.
- anti-obfuscation
-
Protection against attacks that involve obfuscated code. Obfuscation may involve encrypting code, stripping out potentially revealing metadata, renaming useful class and variable names, or adding meaningless code to an application binary.
- antivirus
-
Antivirus software, abbreviated: AV. Used to prevent, detect and remove malicious software.
- API
-
A set of tools and procedures provided by the programmer of an application so that other programmers can control, exchange data with, or extend the functionality of an application.
- APN
-
Access Point Name provided by an ISP for wireless WAN connections.
- Apple iOS
-
Apple mobile operating system for devices such as iPhone and iPad. Compare to Android.
- appliance
-
Device or piece of equipment.
- Application Load Balancer
-
AWS feature that makes routing decisions at the application layer (HTTP/S), supports path-based routing, and can route requests to one or more ports on each EC2 instance or container instance in a VPC.
- ARP
-
Protocol for mapping IP addresses to physical addresses such as Ethernet or Token Ring.
- ARP spoofing
-
Type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network. This results in the linking of an attacker's MAC address with the IP address of a legitimate computer or server on the network.
- ASCII
-
Referring to a standard 7-bit character system that includes the alphanumeric characters and printer control codes.
- authoritative DNS
-
Name server that gives answers in response to queries about names in a DNS zone.
- authority zone
-
Associated with DNS. A section of the domain-name tree for which one name server is the authority.
- Auto Scaling Group
-
A representation of multiple EC2 instances that share similar characteristics, and that are treated as a logical grouping for the purposes of instance scaling and management.
- autonomous system
-
Collection of networks under a common administration sharing a common routing strategy. Autonomous systems are subdivided by areas. An autonomous system must be assigned a unique 16-bit number by the IANA.
- AWS Direct Connect
-
Enables you to use the Internet privately through AWS cloud services by linking your internal network to an AWS Direct Connect location. You can create virtual interfaces directly to the AWS cloud and to Amazon VPC, bypassing Internet service providers in your network path.
- AWS IoT
-
A managed cloud platform that lets connected devices easily and securely interact with cloud applications and other devices.
- AWS region
-
A named set of AWS resources in the same geographical area. A region comprises at least two Availability Zones.
- AWS Management Console
-
A simple and intuitive web-based user interface to access and manage AWS.
- back-end server
-
Part of the back-end process, that usually consists of server, application, and database. The back end is where the technical processes happen, as opposed to the front end, which is usually where the user's interaction occurs.
- backbone
-
Referring to the Internet, a central network that provides a pathway for other networks to communicate.
- Backup Export Tool
-
Allows export of historical revisions of data backed up and stored on Barracuda Backup appliances.
- Balance-XOR
-
Operating mode for Ethernet bundles where the link is chosen by calculating the hash out of the source/destination MAC (Layer 2) combined with the IP addresses (Level 3).
- bandwidth
-
Rate of data transfer, usually expressed in multiples of bits per second (bps).
- Bare Metal Restore
-
The process of reformatting a computer from scratch after a catastrophic failure. Typically, the process involves reinstalling the operating system and software applications and then, if possible, restoring data and settings.
- Barracuda Backup
-
Barracuda Networks' affordable solution for onsite and remote data storage and access, which allows you to quickly and securely store data in multiple offsite locations.
- Barracuda Campus
-
Online documentation and training material for all Barracuda Networks products, located at campus.barracuda.com. Contains feature descriptions, how-to articles, and release notes. Formerly known as Barracuda University and Barracuda TechLibrary.
- Barracuda Central
-
Provides a wide range of statistics, threat information, and a number of useful services to help manage and secure your network. Shares information with Barracuda Networks customers and the Internet security community.
- Barracuda cloud
-
A complementary component of all Barracuda Networks products, providing an added layer of protection and scalability.
- Barracuda Networks account
-
Credentialed account used to log into Barracuda Services and Barracuda Appliance Control.
- Barracuda Networks Technical Support
-
Contact Barracuda Networks Technical Support if you need help with your Barracuda Networks product. Visit https://www.barracuda.com/support/index for details.
- Barracuda NextGen Firewall X-Series
-
Application-aware network firewall appliance, designed for organizations without dedicated IT personnel to manage firewalls.
- Barracuda NG Web Security Gateway (IBM ISS)
-
Web Security Gateway engine used by the URL Filter service on the Barracuda NextGen Firewall F-Series. The Barracuda NG Web Security Filter can only be used in combination with the HTTP proxy and is not compatible with Application Control. Requires a Barracuda NG Web Security Gateway subscription.
- Barracuda portal
-
Entry point into Barracuda cloud services.
- BIND
-
The standard TCP/IP naming service that links network names with IP addresses.
- block device
-
Storage device that moves data in sequences of bytes or bits (blocks). Example: hard disk, CD-ROM drive, flash drive.
- block device mapping
-
Defines the block devices (instance store volumes and EBS volumes) to attach to an AWS instance.
- Blowfish
-
Licence-free symmetric encryption algorithm that can be used as a replacement for the DES and IDEA algorithms.
- byte-level data deduplication
-
Data deduplication method that analyzes data streams at the byte level by performing a byte-by-byte comparison of new data streams versus previously stored ones.
- CAST
-
Licence-free symmetric encryption algorithm (key block cipher).
- certificate
-
A document or seal certifying the authenticity of something. A digital certificate certifies the ownership of a public key. This allows relying parties to rely upon signatures or on assertions made about the private key that corresponds to the certified public key.
- changelog
-
Log of configuration changes on the appliance. Can be found in the release notes of the product.
- checksum
-
The result of a mathematical operation that uses the binary representation of a group of data as its basis, usually to check the integrity of the data.
- CIDR
-
Technique supported by BGP4 and based on route aggregation. CIDR allows routers to group routes together in order to cut down on the quantity of routing information carried by the core routers.
- CIFS
-
Standard for sharing files across the Internet.
- Class A|B|C|D network
-
Classes of IP addresses as defined in the Internet Protocol hierarchy.
- classic load balancer
-
In AWS, a Classic Load Balancer makes routing decisions at either the transport layer (TCP/SSL) or the application layer (HTTP/HTTPS), and supports either EC2-Classic or a VPC (virtual private cloud).
- cloud integration
-
AWS cloud integration allows the firewall to connect directly to the AWS service fabric to rewrite routes in AWS route tables and to retrieve information for the cloud element on the dashboard. Cloud integration also works with Azure.
- Cloud LiveBoot
-
Allows administrators to boot VMware virtual guest systems and Microsoft Hyper-V virtual machines in the Barracuda Cloud as a sandbox for testing purposes.
- cloud operating system
-
A computer operating system that is specially designed to run in a provider's datacenter and be delivered to the user over the Internet or another network. Windows Azure is an example of a cloud operating system or 'cloud layer' that runs on Windows Server 2008.
- cloud portability
-
The ability to move applications and data from one cloud provider to another. This is the opposite of "vendor lock-in".
- cloud replication
-
Replicates backup data to the Barracuda Cloud, ensuring against data loss in case of a catastrophe.
- cloud storage
-
A model of data storage where the digital data is stored in logical pools, the physical storage spans multiple servers (and often locations), and the physical environment is typically owned and managed by a hosting company.
- cloud-based encryption
-
A service offered by cloud storage providers whereby data is transformed using encryption algorithms and is then placed on a storage cloud.
- CloudFormation
-
AWS management tool that lets you create, manage, and update a collection of AWS resources using templates and allowing Json code for template deployment.
- CloudFront
-
An AWS content delivery service that helps you improve the performance, reliability, and availability of your websites and applications.
- cloudsourcing
-
Replacing traditional IT operations with lower-cost, outsourced cloud services.
- CloudWatch
-
AWS management tool to monitor resources and applications. Aggregates data and metrics (cpu load, network throughput, disk io, etc), filters it, and provides alarm actions.
- cluster-specific
-
Global settings that apply to a cluster on a Barracuda NextGen Control Center.
- collision domain
-
In Ethernet, the network area within which frames that have collided are propagated. Repeaters and hubs propagate collisions. LAN switches, bridges and routers do not.
- compression, bandwidth
-
A reduction in either the time to transmit or in the amount of bandwidth required to transmit data.
- congestion
-
Traffic in excess of network capacity.
- connection draining
-
AWS feature, lets you scale down EC2 instances to reduce sessions.
- CPU emulation
-
Masks the virtualization environment, so payload can be detonated more effectively.
- cross region replication
-
Feature of S3 storage class in AWS. Once enabled, every object uploaded to a particular S3 bucket is automatically replicated to a designated destination bucket located in a different AWS region.
- data center
-
A facility used to house computer systems and associated components, such as telecommunications and storage systems.
- data truncation
-
Occurs when data or a data stream is stored in a location too short to hold its entire length. May occur automatically, such as when a long string is written to a smaller buffer, or deliberately, when only a portion of the data is wanted.
- database instance
-
An isolated database environment. A database can be opened by more than one instance, but an instance can open only one database.
- datasheet
-
Document that summarizes the performance and other technical characteristics of a product, machine, component (e.g., an electronic component), material, a subsystem (e.g., a power supply) or software in sufficient detail to be used by a design engineer to integrate the component into a system.
- DCE-RPC
-
Remote procedure call system that allows programmers to write distributed software without having to worry about the underlying network code.
- dedicated host
-
An Internet hosting option where an organization leases an entire server, fully dedicated to their use. This is also an option in the public cloud. The price for a Dedicated Host varies by instance family, region, and payment option.
- dedicated instance
-
Amazon EC2 instance that runs on single-tenant hardware dedicated to a single customer.
- dedicated reserved instance
-
An option you can purchase from a cloud vendor to guarantee that sufficient capacity will be available to launch Dedicated Instances into a virtual private cloud (VPC).
- deduplication
-
Method of removing redundancies from data before transmission.
- Diffie-Hellman
-
Key exchange algorithm that allows two devices to establish a shared secret over an unsecure network.
- direct server return
-
An option associated with a destination server that allows for increased outbound traffic throughput when performing sustained uploads, such as streamed audio or visual media.
- disaster recovery
-
Involves a set of policies and procedures to enable the recovery or continuation of vital technology infrastructure and systems following a natural or human-induced disaster.
- DNS Cache
-
A temporary database, maintained by a computer's operating system, that contains records of all recent visits and attempted visits to websites and other Internet domains.
- DNS record
-
Database record used to map a URL to an IP address.
- Docker
-
Open-source software that automates the deployment of applications inside virtualized software containers.
- Docker image
-
A layered file system template that is the basis of a Docker container. Docker images can comprise specific operating systems or applications.
- dynamic path selection
-
Term used in context with Traffic Intelligence (TI). Using dynamic path selection, the session is balanced depending on the amount of traffic.
- dynamic routing
-
Routing that adjusts automatically to network topology or traffic changes. Also called adaptive routing.
- DynamoDB
-
A fully managed Amazon NoSQL database service that provides fast and predictable performance with seamless scalability.
- edge location
-
Used by the AWS service CloudFront. Feature that offers content to end users via geographically closer locations to improve their experience.
- eDiscovery
-
The legal procedure of discovery - finding data with the intent to use it as evidence in a legal case - as it pertains to information and evidence in electronic form.
- EGP
-
Internet protocol for exchanging routing information between autonomous systems.
- Elastic Beanstalk
-
A web service for deploying and managing applications in the AWS cloud without worrying about the infrastructure that runs those applications.
- Energize Updates
-
Provides Barracuda Networks products with protection from the latest Internet threats. These updates are sent out hourly, or more frequently if needed, to ensure that appliances always have the latest and most comprehensive protection. Barracuda Energize Updates subscriptions must be purchased with any Barracuda Networks appliance. Includes basic support, firmware maintenance, security updates, and early release firmware.
- envelope encryption
-
The use of a master key and a data key to algorithmically protect data. The master key is used to encrypt and decrypt the data key and the data key is used to encrypt and decrypt the data itself.
- Ethernet
-
Local area network technology that uses special twisted pair or fiber optical cables. As per the OSI model, Ethernet provides services up to and including the data link layer.
- EULA
-
Contract between the Barracuda and the purchaser, establishing the purchaser's right to use Barracuda software.
- evasion
-
Bypassing an information security device in order to deliver an exploit, attack, or other form of malware to a target network or system, without detection.
- exploit
-
The use of software, data, or commands to 'exploit' a weakness in a computer system or program to carry out some form of malicious intent, such as a denial-of-service attack, Trojan horses, worms, or viruses.
- firmware
-
Model version of a Barracuda Networks product.
- flooding
-
A Denial of Service (DoS) attack that is designed to bring a network or service down by flooding it with large amounts of traffic.
- Flow Logs
-
AWS service that enables you to capture information about the IP traffic going to and from network interfaces in a VPC.
- forensics
-
Techniques of examining digital media with the aim of identifying, preserving, recovering, analyzing, and presenting facts and opinions about the digital information.
- FQDN
-
The Fully Qualified Domain Name includes host name, as well as all enclosing domains, and is often distinguished by the use of a terminating dot: (host.subdomain.domain.).
- FTP proxy
-
Allows the proxy to control FTP traffic. When a client uploads or downloads files, the proxy identifies the traffic as FTP, allowing the appliance to control file transfers using TCP optimization and caching.
- Gb
-
A gigabit, or 10^9 bits.
- GB
-
A gigabyte, or 10^9 bytes, or 8000 million bits.
- GHz
-
A unit of frequency equal to 10^9 hertz, which is defined as one cycle per second.
- GiB
-
A gibibyte. A contraction of "giga" "binary" byte, a gibibyte is 2^30 or 1,073,741,824 bytes. It is slightly larger than a gigabyte (GB), which is 10^9 or 1,000,000,000 bytes.
- Glacier
-
Amazon AWS cloud archiving service for storage of old data (commonly after 30 days).
- Google Accounts Enforcement
-
Integration of Google Accounts, for example in authentication processes.
- Google App Engine
-
A service that enables developers to create and run web applications on Google's infrastructure and share their applications via a pay-as-you-go, consumption-based plan with no setup costs or recurring fees.
- granular scheduling
-
Selecting specific sets of data to back up and configure multiple schedules for each data source, each with a different set of selected data.
- guest access
-
Feature that lets you set up a confirmation page or ticketing system to temporarily grant guests access to the network.
- H.323
-
Standard that defines the protocols to provide audio-visual communication sessions on any packet network. H.323 addresses call signaling and control, multimedia transport and control, and bandwidth control for point-to-point and multi-point conferences.
- hardware refresh
-
Barracuda program that allows existing appliance customers with an active Energize Updates subscription to migrate to the latest hardware platforms at a reduced price -- ensuring customers benefit from the latest hardware improvements and firmware capabilities.
- HTTP
-
Protocol for submitting data over a network, commonly used to load website content in a web browser.
- HTTPS
-
Consists of communication over HTTP within a connection encrypted by TLS or SSL. The main motivation is authentication of the visited website and protection of the privacy and integrity of the exchanged data.
- Hyper-V
-
Native Hypervisor on Windows, created by Microsoft.
- hypervisor
-
Computer software, firmware, or hardware that creates and runs virtual machines. A computer on which a hypervisor runs one or more virtual machines is called a "host machine". Each virtual machine is called a "guest machine".
- Infrastructure Services
-
Infrastructure is the backbone of all of your business operations.
- inline deduplication
-
The removal of redundancies from data before or as it is being written to a backup device. This reduces the amount of redundant data in an application and the capacity needed for the backup disk targets, in comparison to post-process deduplication. However, inline deduplication can slow down the overall data backup process.
- instance
-
A "copy" of a virtual appliance/image/machine that is being installed, brought up, configured, etc. In the context of an AWS deployment, a virtual product (for example, a Barracuda CloudGen Firewall) that runs on Amazon Web Services (AWS).
- instant replacement
-
With an Instant Replacement subscription, if your Barracuda Networks product fails, we will ship you a replacement unit within one business day so you can get back up and running soon. Instant Replacement subscriptions also work toward getting updated hardware through the Hardware Refresh program.
- Intrusion Detection System
-
Network security feature that monitors local and forwarding firewall traffic for malicious activities.
- IS
-
Routing node in an OSI network.
- ISDN
-
Communication protocol offered by telephone companies that permits telephone networks to carry data, voice, and other source traffic.
- jitter
-
Measure of the difference in packet delay, that is, the difference in the space between packet arrival times. Jitter can be remedied somewhat with a jitter buffer.
- kb
-
A kilobit.
- Launch Configuration
-
AWS template that an Auto Scaling group uses to launch EC2 instances. Contains AMI, instance type, key pair, security groups, and block device mapping.
- Layer 7 Application Control
-
A legacy feature of the Barracuda NG Firewall. Barracuda Networks recommends using the new Application Control in Barracuda NextGen Firewall instead.
- LDAPS
-
Connection protocol used between application and Network Directory or Domain Controller. LDAPS communication is encrypted and secure.
- legacy
-
Latest maintenance release for the previous major firmware version.
- link aggregation
-
Operating mode for Ethernet bundles that uses the LACPDU protocol to negotiate automatic bundling links.
- LiveBoot
-
Allows administrators to instantly recover VMware virtual guest machines.
- LiveBrowse
-
Enables administrators to view and traverse file structures inside all backed up VMware and Hyper-V VMDK, VHD, and VHDX files. Files and directories can also be downloaded within VMware and Hyper-V snapshots.
- local control
-
Enables administrators to manage their Barracuda Backup appliance in a “connectionless” state, independent of the Barracuda Networks Cloud.
- macOS
-
Macintosh Operating System. Formerly known as Mac OS X.
- mail server
-
A server that receives, stores, sends, and processes emails.
- Mb
-
A megabit.
- MBPS
-
A unit of measure used to describe the rate of data transmission equal to one millions bits per second.
- MHz
-
A unit of frequency equal to 10^6 hertz, which is defined as one cycle per second.
- Microsoft Exchange
-
Microsoft Exchange Server is a calendaring and mail server that runs exclusively on the Microsoft Windows Server product line. A hosted version of Exchange Server is available as part of Office 365
- Microsoft SharePoint
-
A web application platform in the Microsoft Office server suite, mainly used for document management and storage.
- MIME type
-
Two-part identifier for file formats and format contents transmitted over the Internet.
- MOS
-
Measure representing the overall quality of a system or stimulus, calculated by taking the arithmetic mean of individual values of quality. Often used for, but not limited to, video, audio and audiovisual quality.
- multi-factor authentication
-
Security feature that requires at least two forms of authentication to access a destination or service.
- multilayer switch
-
Switch that filters and forwards packets based on MAC addresses and network addresses. A subset of LAN switch.
- multiplexing
-
Scheme that allows multiple logical signals to be transmitted simultaneously across a single physical channel.
- multitenancy
-
The existence of multiple clients sharing resources (services or applications) on distinct physical hardware. Due to the on-demand nature of cloud, most services are multitenant.
- name server
-
Server connected to a network that resolves network names into network addresses.
- NAT instance
-
A NAT device, configured by a user, that performs network address translation in a VPC public subnet to secure inbound Internet traffic.
- NetBIOS
-
API used by applications on an IBM LAN to request services from lower-level network processes. These services might include session establishment and termination, and information transfer.
- network addressable storage
-
A file-level computer data storage server connected to a computer network providing data access to a mixed group of clients.
- NFS
-
Unix and Linux operating system network file sharing system.
- non-stub area
-
Resource-intensive OSPF area that carries a default route, static routes, intra-area routes, interarea routes, and external routes. The only OSPF areas that can have virtual links configured across them and that can contain an ASBR.
- NoSQL
-
Nonrelational database systems that are highly available, scalable, and optimized for high performance. Instead of the relational model, NoSQL databases (like Amazon DynamoDB) use alternate models for data management, such as keyvalue pairs or document storage.
- null ciphers
-
Form of encryption where the plaintext is mixed with a large amount of non-cipher material.
- offline authentication
-
Authentication method with an internal IP address as destination. Offline Authentication Works with all protocols (for example, POP3).
- offsite
-
Refers to a location other than the subject site. Example: Barracuda Cloud Storage subscription plans provide diverse offsite storage that scales to meet your changing data requirements.
- offsite replication
-
Replicates backup data to another geographical location that is running a secondary Barracuda Backup appliance. This is to ensure against data loss in case of catastrophe.
- offsite vaulting
-
The ability to store longer-term backups exclusively in the cloud to free space for daily needs.
- On-Demand Instance
-
An Amazon EC2 pricing option that charges you for compute capacity by the hour with no long-term commitment.
- ONC-RPC
-
Remote procedure call system based on calling conventions used in Unix and the C programming language.
- onsite
-
At the place where a business or activity happens. Compare to offsite.
- onsite replication
-
Replicates backup data to a secondary Barracuda Backup appliance at the same location.
- OpenStack
-
A free and open-source cloud computing software platform used to control pools of processing, storage, and networking resources in a datacenter.
- OSB transformation
-
Orthogonal sparse bigram transformation. In machine learning, a transformation that aids in text string analysis and that is an alternative to the n-gram transformation. OSB transformations are generated by sliding the window of size n words over the text, and outputting every pair of words that includes the first word in the window.
- PaaS
-
Cloud platform services, where the computing platform (operating system and associated services) is delivered as a service over the Internet by the provider.
- packet fragmentation
-
Part of the processing of TCP IP traffic that consists of fragmenting, sending, and reassembling packets.
- padding
-
Additional, meaningless data adds to a packet to increase its size.
- passphrase
-
Series of characters that must be provided by the user for input to the cryptographic key generation process. Must be no less than eight logical characters and can contain spaces.
- PAYG
- peer
-
A device to which a computer has a network connection that is relatively symmetrical and where both devices can initiate or respond to a similar set of requests.
- persistent storage
-
A data storage solution where the data remains intact until it is deleted.
- Personal Firewall
-
Component of the Barracuda Network Access Client. Centrally managed host firewall that can handle up to four different rulesets at once, depending on the policy applicable to user, machine, date, and time
- Placement Group
-
Logical grouping of AWS instances within a single Availability Zone.
- policy routing
-
Also called source-based routing, is used when the source IP address of the connection determines, in part or completely, which route is used.
- policy simulator
-
A tool in the IAM AWS Management Console that helps you test and troubleshoot policies so you can see their effects in real-world scenarios.
- polling
-
A means of Media Access Control where a device may only transmit information when it is given permission to transmit by a controller device.
- PPTP
-
A network protocol that is used to establish VPN tunnels.
- Premium Support
-
24/7 support, offered by Barracuda Networks
- private subnet
-
A VPC subnet whose instances cannot be reached from the Internet.
- public cloud
-
Cloud computing model, in which a service provider makes resources, such as applications and storage, available to the general public over the Internet. Examples include Amazon AWS, Google Cloud Platform, and Microsoft Azure.
- public key encryption
-
Encryption that uses both a public key and a private key as a pair; one is used for encryption, the other is used for decryption.
- public subnet
-
A subnet whose instances can be reached from the Internet.
- purging
-
Cleaning out inactive or obsolete records or data from the set of active files for archiving or deletion.
- quiesce
-
To pause or alter a device or application to achieve a consistent state, usually in preparation for a backup or other maintenance.
- RAID
-
Provides a way of storing the same data in different places (redundantly) on multiple hard disks.
- ransomware
-
Malicious software designed to block access to computer files or an entire system until a sum of money is paid.
- RDS
-
AWS term, managed Relational Database Service
- real time
-
The time in which an action is performed.
- regular expression
-
A combination of characters or character classes and operators that describe text for matching purposes.
- replication
-
Involves sharing information to ensure consistency between sources. By comparison, backups save data unchanged for a long period of time; replicas undergo frequent updates.
- Reserved Instance
-
A pricing option for EC2 instances that discounts the on-demand usage charge for instances that meet the specified parameters. Customers pay for the entire term of the instance, regardless of how they use it.
- Reserved IP addresses
-
IP addresses reserved for special purposes. For example, IP addresses reserved and assigned to Azure cloud services.
- retention policy
-
Rules that determine whether data older than a defined age will be deleted of offloaded to another device or cloud.
- reverse lookup zone
-
Support the secondary function of Domain Name System (DNS) - the resolution of IP addresses to host names.
- reverse proxy
-
The HTTP Proxy directs incoming requests from other servers to clients without providing the origin details.
- RMA
-
Numbered authorization provided by a merchant, like Barracuda Networks, to permit the return of a product.
- rollback
-
A return to a previous state after an installation or configuration failure.
- root certificate
-
A CA-signed or self-signed public key certificate that identifies the root certificate authority (CA).
- Route 53
-
AWS service for DNS-based load balancing that connects user requests to EC2 instances, ELBs, S3 buckets, and Internet applications and provides health checks for monitoring or to route traffic to healthy endpoints.
- route table
-
In AWS, a set of routing rules that controls the traffic leaving any subnet that is associated with the route table. You can associate multiple subnets with a single route table, but a subnet can be associated with only one route table at a time.
- routed bridging
-
Bridging mode where the router acts as a bridge.
- RPC protocols
-
Congestion control algorithm designed for fast download times such as user response times, or flow-completion times.
- RRS
-
One of the four storage classes in AWS. 99.9& SLA reduced redundancy storage, lower fault tolerance, stored in 1 region.
- ruleset
-
A collection of one or more access or application rules.
- S3
-
Object-based, scalable object storage in the AWS cloud.
- SafeSearch
-
Feature of Google Search that acts as an automated filter of pornography and potentially offensive content.
- Salesforce
-
An online SaaS company that is best known for delivering customer relationship management (CRM) software to companies over the Internet.
- sandboxing
-
A security mechanism for separating untested or untrusted programs or code, without risking harm to the host environment.
- scalability
-
The suitability of a network system to operate properly and efficiently when configured on a large scale.
- SCCP
-
Network layer protocol that provides extended routing, flow control, segmentation, connection orientation, and error correction facilities in Signaling System 7 telecommunications networks.
- SCSI
-
A specification (ANSI X3T9.2) for a short distance Local Area Network (up to 6 meters) using bus topology for up to eight devices.
- SD-WAN
-
A wide area network controlled by software. Control and data are decoupled, simplifying both network hardware and management.
- serial port
-
A port on a computing device that is capable of either transmitting or receiving one bit at a time.
- service certificate
-
Certificate for a service, signed by a valid, trusted entity, that allows access without further validation.
- session layer
-
The layer in the OSI 7-Layer Model that is concerned with managing the resources required for the session between two computers.
- single pass
-
Algorithm that reads its input exactly once, in order, without unbounded buffering. Generally requires O(n) time and less than O(n) storage (typically O), where n is the size of the input.
- SIP
-
Communications protocol for signaling and controlling multimedia communication session such as voice and video calls.
- site to site replication
-
Replicating data from one site to another. For example, backup data replication from an on-premise Barracuda Backup to another on-premise Barracuda Backup unit.
- Site-to-Site VPN
-
Securely connects entire networks to each other, for example, connecting a branch office network to a company headquarters network.
- SLA
-
A contractual agreement by which a service provider defines the level of service, responsibilities, priorities, and guarantees regarding availability, performance, and other aspects of the service.
- smart host
-
Email message transfer agent that allows a Simple Mail Transfer Protocol (SMTP) server to route email to an intermediate mailserver rather than directly to the recipient's server.
- SMS Passcode
-
Multi-Factor Authentication (MFA) solution that adds an extra security layer for a broad range of authentication clients.
- SNA
-
IBM's communications architecture and strategy.
- snapshot
-
Capture of the state of a system at a particular point in time.
- SNMP service
-
The SNMP service is used to remotely monitor the network and system state of a Barracuda NextGen Firewall using a network management system (NMS).
- SNS
-
Feature to push notifications to mobile services and trigger actions, in Amazon Web Services (AWS).
- SNTP
-
Network package format for time synchronization, similar to NTP, only recommended for simple applications.
- Source NAT
-
Changing the source address/port in the IP header of a packet. Example: changing a private IP address/port into a public address/port in the IP header of a packet leaving the network.
- Spot Instance
-
Purchasing option that allows a customer to purchase unused Amazon EC2 computer capacity at a highly-reduced rate.
- SQL
-
A standard metalanguage for data base access and management.
- SQL server
-
Microsoft SQL Server is a relational database management system (RDBMS) designed for enterprise environments.
- SQS
-
Amazon Simple Queue Service (SQS) is a fast, reliable, scalable, fully managed message queuing service.
- SSHFS
-
Filesystem client based on the SSH File Transfer Protocol.
- SSL VPN client
-
VPN client that can be installed on the Barracuda CloudGen Firewall and then accessed through the Barracuda SSL VPN web portal. (Barracuda SSL VPN is a different product.)
- static website hosting
-
Hosting of a static website in Amazon S3. When a bucket is enabled for Static website hosting, all content is accessible to web browsers via the Amazon S3 website endpoint of the bucket.
- stream and packet compression
-
Data compression technique used in wireless networks.
- striping
-
Method to combine performance and throughput of Amazon EBS volumes to a single logical volume.
- subnetting
-
Partitioning of an IP address space into several smaller address spaces.
- syslog streaming
-
Method for handling of log file messages that are to be transferred to another system for analyzing purposes.
- tap
-
An intrusion into a network cable by a connector.
- TB
-
A terabyte. 10^12 or 1,000,000,000,000 bytes. 1,000 GB.
- TCP Proxy
-
The TCP Proxy is placed between browser and web server and filters requests and responses in TCP streams.
- TCP/IP
-
A Transport and Network Layer Protocol, respectively, used for communication in the Internet and often in private networks.
- Telnet
-
A protocol to access a remote computer system, often a Unix system, over the network. Origin: Teletype Network.
- terminal server
-
Communications processor that connects asynchronous devices such as terminals, printers, hosts, and modems to any LAN or WAN that uses TCP/IP, X.25, or LAT protocols.
- TFTP
-
A simplified version of FTP (file tranfer protocol).
- timestamp
-
A date/time string to mark an occurrence of an event.
- transparent proxy
-
The HTTP Proxy operates transparently to the clients in the network.
- Transport Layer Security
-
Cryptographic protocol that provides communications security over a computer network.
- unencrypt
-
To decrypt encrypted data. The antonym of encrypt.
- unit
-
Product or system.
- user agent
-
Software that acts on behalf of the user. For example, an agent might give information about a user's browser and operating system to a web site.
- User Identity Awareness
-
Security term for traffic monitoring based on username, host, and IP address.
- USN journal
-
Change journal of file and directory changes on the NTFS volume, including a description of the change and the name of the file or directory.
- vertical cloud
-
A cloud computing environment optimized for use and built around the compliance needs of specialized industries such as healthcare, financial services, and government operations.
- virtual network computing
-
Graphical software that enables you to remotely control another computer, independent of platform.
- virtualization
-
Allows multiple guest virtual machines (VM) to run on a host operating system. Guest VMs can run on one or more levels above the host hardware, depending on the type of virtualization.
- VLAN
-
Any broadcast domain that is partitioned and isolated in a computer network at the data link layer (OSI layer 2). The physical interface behaves like several interfaces, and the switch behaves like multiple switches.
- VM
-
An emulation of a computer system that is based on computer architectures and provides functionality of a physical computer. For example, the Barracuda NextGen Firewall Azure can be deployed as a virtual machine in the Microsoft Azure cloud.
- VMware
-
A software company that provides cloud and virtualization software and services, incuding vSphere.
- vSphere Client
-
An enhanced suite of tools for cloud computing utilizing VMware ESX/ESXi. Includesthe VMWare vCenter server and the vSphere client.
- vStorage APIs for Data Protection
-
VMware API that backs up and restores vSphere virtual machines.
- Vx
-
Specifies virtual model of a Barracuda Networks products. For example, Barracuda Web Application Firewall 460 Vx.
- WAN
-
A network connecting devices separated by large geographical distances, often joining multiple local access networks (LANs).
- WAN IP address
-
IP address used to connect your WAN to the Internet. It is shared by all devices in the WAN.
- Web 2.0
-
Term for a second generation of the World Wide Web, focused on the ability for people to collaborate and share information online. Web 2.0 describes World Wide Web sites that emphasize user-generated content, usability, and interoperability.
- web interface
-
Web-based user interface.
- web server
-
A computer system that processes requests via HTTP, the basic network protocol used to distribute information on the web.
- WebDAV
-
Extension of HTTP that enables clients to perform remote web content authoring operations.
- Wi-Fi
-
A technology for wireless local area networking with devices based on the IEEE 802.11 standards.
- YAML
-
A human-readable data serialization language, commonly used for configuration files.
- Yosemite Server Backup
-
Barracuda's complete data backup and protection solution that enables you to back up all of your data and restore it quickly in the event of disaster. It supports multiple server applications, operating systems, and backup devices including both tape and disk.