To be able to continuously update and improve frequently used features based on real-world data, the Barracuda CloudGen Firewall sends performance and usage data to the Barracuda telemetry servers. Sending statistics is opt-out for new or freshly installed CloudGen Firewalls, and opt-in for updated firewalls. After collecting data, the CloudGen Firewall starts one attempt to update the telemetry data via an HTTPS connection. If the connection to the update servers fails, no further attempts are made until the next day. A copy of all parameters sent to the telemetry servers is logged every time an update is initiated.
The Barracuda Firewall Control Center sends data collected only on the box level. No data from the Control Center layer is collected. For firewalls in the public cloud (AWS, Google, or Azure), telemetry cannot be completely disabled; the minimal set of parameters is always transmitted.
Telemetry Default Settings
Depending on the firmware version, the default setting for telemetry can be different.
If you are running a firewall with a fresh installation of firmware release 9.0.0, sending telemetry data is enabled per default.
If you are running a firewall deployed with an old firmware version that has been updated until version 8.3, sending telemetry data is disabled per default.
Also note that for managed firewalls, settings displayed in the UI on the Control Center and on the managed box can differ depending on the cluster and firmware version.
Cluster < 9.0, Firewall >= 9.0 | Cluster >= 9.0, Firewall < 9.0 | |
|---|---|---|
Control Center | On a CC: "Share Telemetry Data" displays "Disabled". | The CC displays that telemetry data is being sent. |
Firewall | On a firewall: "Share Telemetry Data" displays "Full System Diagnostics and Analytics" and the box is sending data. | The firewall is not sending data. |
Barracuda Telemetry Server
airlock.nap.aws.cudaops.com
Telemetry Parameter List
Name | Key | Value Type | Dataset | Description |
|---|---|---|---|---|
General Information | ||||
Telemetry Amount | telemetry_amount | full/minimal | Minimal+Full | Whether the full or minimal amount of telemetry data is sent |
Serial Number | sn | Number | Minimal+Full | Serial number of the box |
MAC Address | mac | MAC address (hex format) | Minimal+Full | MAC address used for the license |
Model | appliance | Type | Minimal+Full | The appliance type, e.g., T100 for a SecureEdge T100 or VT1500 for a virtual appliance VT1500 |
Model | model | Type | Minimal+Full | The appliance type, e.g., T100 for a SecureEdge T100 or VT1500 for a virtual appliance VT1500 |
Virtual Type | virt_type | Type | Minimal+Full | Information about the hypervisor (VMware, Azure...) |
Virtual Subtype | virt_subtype | Type | Minimal+Full | Information about the hypervisor |
DevMap | devmap | Text | Full | Device mapping |
Number of CPUs | numcpu | Number | Minimal+Full | Number of CPUs |
Memory Usage | memory | Percent | Full | Percent of used memory |
Swap usage | swap | Percent | Full | Percent of used swap memory |
Average CPU Load | cpu | Float | Full | 15-Minute CPU average load at the moment of collecting the data |
Used Firmware Partition | diskfirmware | Percent | Full | Allocation of partition "/" in percent |
Used Data Partition | diskdata | Percent | Full | Allocation of partition "/phion0" in percent |
Firmware Version | firmware | Version String | Minimal+Full | Version of the CloudGen Firewall firmware software |
Uptime | uptime | Seconds | Minimal+Full | Box uptime in seconds |
Box Location | country | Location | Full | Location of the box if configured |
Stand-Alone / Centrally Managed | mcmanaged | Yes / No | Minimal+Full | Is box managed by a control center |
EU Expiration Date | euexpiration | Date | Minimal+Full | Expiration Date of the Energize Updates |
EU Status | eustate | Status | Minimal+Full | Status of Energize Updates |
License Status | licstatus | Status | Minimal+Full | Status of the license |
Firewall Insights Configured | fwinsights_configured | Yes / No | Full | Is Firewall Insights configured |
Firewall Insights Licensed | fwinsights_licensed | Yes / No | Full | Is Firewall Insights licensed |
Virtual WAN for Azure Cloud | azurevwan_configured | Yes / No | Full | Is vWAN for Azure Cloud enabled |
Web User Interface | ismanagedbywebui | Yes / No | Full | Is Web UI enabled |
Kernel architecture | kernelarchitecture | Text | Full | Is it a 32 or 64 bit system |
Metered Cloud Device | metered_ng | Yes / No | Minimal+Full | Is the appliance a metered cloud appliance |
Time | server_timestamp | Time | Full | Current time as Unix timestamp |
Telemetry configuration | telemetry_amount | String | Minimal+Full | Minimal or full telemetry |
Virtual Routing and Forwarding | vrf | Number | Full | Number of VRF instances in use |
REST API Requests | rest_requests | Json object | Full | Number of REST requests, grouped by role and category |
REST API over TLS | restd_ssl_configured | True / False | Full | If TLS is configured for REST API queries |
Master Name | mastername | String | Full | Master name of the Control Center by which the CloudGen Firewall is managed (only if it is a managed CloudGen Firewall) |
Tesseract ID | tesseract_id | String | Full | Identifier of SecureEdge appliances |
Authentification Serial Number | auth_serial | String | Full | Authentification serial number of SecureEdge appliances |
Disk Encryption | isdiskencrypted | True / False | Full | If disk is encrypted |
Services | ||||
App Control | appcontrol | Status | Full | Shows the status of Application Control (license and activation) |
SSL Inspection | sslice | Enabled / Disabled | Full | SSL Inspection for firewall service enabled |
Port Protocol Protection | protocolprotection | Enabled / Disabled | Full | Is protocol protection in the firewall service enabled |
Google Safe Search | safesearch | Enabled / Disabled | Full | Google Safe Search enabled |
YouTube for Schools | ytforschools | Enabled / Disabled | Full | Youtube for schools enabled |
URL Filter | cofs | Enabled / Disabled | Full | Web filter service enabled |
Virus Scanner | virscan | Enabed / Disabled | Full | AV Scanner service installed |
Avira Virus Scanner | avira | Enabled / Disabled | Full | Avira AV Scanner enabled |
AV Scanner LastLine (ATP) Engine | lastline | Enabled / Disabled | Full | LastLine (ATP) Engine enabled in AV Scanner |
AV Scan in Firewall | fwavscan | Enabled / Disabled | Full | AV Scan used in access rule(s) |
HTTP Proxy | proxy | Enabled / Disabled | Full | HTTP proxy service installed |
HTTP Proxy mode | proxymode | Reverse / Forward / Transparent | Full | HTTP Proxy mode |
Proxy SSL Inspection | squidbump | Enabled / Disabled | Full | SSL Inspection mode from proxy service enabled |
DHCP Enterprise | dhcpe | Enabled / Disabled | Full | DHCP Enterprise service installed |
DHCP Relay | dhcprelay | Enabled / Disabled | Full | DHCP relay service installed |
SSH Proxy | sshprx | Enabled / Disabled | Full | SSH proxy service installed |
FTP Gateway | ftpgw | Enabled / Disabled | Full | FTP Gateway service installed |
OSPF Routing | ospf | Enabled / Disabled | Full | OSPF service installed |
Mail Gateway | mailgw | Enabled / Disabled | Full | Mail Gateway service installed |
SPAM Filter | spamfilter | Enabled / Disabled | Full | Spam filter service installed |
DNS Service | dns | Enabled / Disabled | Full | DNS service installed |
DNS Health Probes | dns_healthprobes | Number | Full | Number of configured health probes |
DNS Primary Zones | dns_master_zones | Number | Full | Number of configured primary zones |
DNS Records | dns_records | Number | Full | Number of configured records |
DNS Split DNS | dns_split_dns | Enabled / Disabled | Full | Split DNS enabled |
IPS | ips | Enabled / Disabled | Full | IPS detection enabled |
IPS Report-Only Mode | ipsreportonly | Enabled / Disabled | Full | IPS report-only mode enabled |
IPS Scan Mode | ipsscanmode | Full / Fast / Auto | Full | IPS scan mode |
Stream Reassembly | streamreassmbly | Yes / No / Auto | Full | Mode of the stream reassembly for the firewall service |
RPC Tracking | rpc | Enabled / Disabled | Full | RPC tracking enabled |
Guest Access | guestaccess | Enabled / Disabled | Full | Guest access enabled |
Audit Log | audit | Enabled / Disabled | Full | Firewall Audit logging enabled |
Audit Type | audittype | String | Full | Audit log handling |
Fwaudit Service | ccfwaudit | Enabled / Disabled | Full | Fwaudit service enabled |
RCS | rcs | Enabled / Disabled | Full | Version Control System for the Configuration enabled |
IPFIX Streaming | ipfixstream | Enabled / Disabled | Full | IPFIX streaming enabled |
Syslog Streaming | syslogstream | Enabled / Disabled | Full | Syslog streaming enabled |
SNMP Service | snmp | Enabled / Disabled | Full | SNMP service installed |
QoS | qos | Enabled / Disabled | Full | Qualtity of Service (Shaping) enabled |
App-Based Provider Selection | appbasedprovider | Enabled / Disabled | Full | Enables/Disables the provider (ISP) selection based on the application detection (e.g., Facebook uses ISP1 and Google uses ISP2) |
SIP Proxy | sipproxy | Enabled / Disabled | Full | SIP proxy service installed |
TCP Proxy | tcpproxy | Enabled / Disabled | Full | TCP proxy for firewall service enabled |
VPN Service | vpnserver | Enabled / Disabled | Full | VPN Service installed |
CloudGen Access Proxy | cgaccessprx_enabled | Enabled / Disabled | Full | CloudGen Access Proxy enabled |
Firewall | ||||
Access Rules | fwrulesenable | Number | Full | Number of forwarding access rules |
Application Rules | apprulesenable | Number | Full | Number of application rules |
Network Objects | netobjs | Number | Full | Number of network objects in the forwarding firewall |
App Objects | appobjs | Number | Full | Number of application objects in the forwarding firewall |
URL Filter Objects | urlcatpolicys | Number | Full | Number of URLCAT policies configured in the forwarding firewall |
Connection Objects | connectionobjs | Number | Full | Number of connection objects in the forwarding firewall |
Dynamic Bandwidth Traffic Duplication | connobj_dynbw_duplicate | Enabled / Disabled | Full | Dynamic bandwidth traffic duplication enabled |
Dynamic Bandwidth Policy | connobj_dynbw_policy | Number | Full | Dynamic bandwidth policy: Bandwidth, Latency, Quality, Upstream, Downstream, None |
VPN Transport Selection | connobj_vpnroutes | Number | Full | VPN transport selection information: Quality, Bulk, Fallback, BestBandwidth, BestLatency, BestQuality |
Traffic Statistics | dtv_bytesfwd | Number | Full | Bytes forwarded in 24 hours |
Traffic Statistics | dtv_bytesin | Number | Full | Incoming bytes in 24 hours |
Traffic Statistics | dtv_bytesout | Number | Full | Outgoing bytes in 24 hours |
Forwarding Firewall | firewall | Enabled / Disabled | Full | Forwarding firewall enabled |
AV Service BATP | fwatd | Enabled / Disabled | Minimal+Full | AV Service BATP enabled |
Schedule Objects | schedules | Number | Full | Number of time schedule objects in the forwarding firewall |
Proxy ARP Objects | proxyarpobjs | Number | Full | Number of proxy ARP objects in the forwarding firewall |
Generic IPS Patterns | genipspattern | Number | Full | Number of generic IPS patterns in the forwarding firewall |
Bridge Groups | bridginggroups | Number | Full | Number of bridge groups in the forwarding firewall |
NAC Service | policyserver | Enabled / Disabled | Full | NAC service enabled |
Active Protected IPs | protIP_active | Number | Minimal+Full | Number of active protected IPs |
Licensed Protected IPS | protIP_licensed | Number | Minimal+Full | Number of licensed protected IPS |
URL Categorization | urlcat | Enabled / Disabled | Full | URL categorization enabled |
Application Rule Mode | fwapprulemode | String | Full | Which kind of ruleset ("apprulelist" or "policies") is used |
VPN | ||||
Mobile Portal | vpn_mobile_portal | Enabled / Disabled | Full | VPN Mobile Portal enabled |
Mobile App Access | vpn_mobile_app_access | Enabled / Disabled | Full | VPN Mobile App Access enabled |
Web Forwards | vpn_web_forwards | Number | Full | Number of the VPN web forwards |
VPN Apps | vpn_applications | Number | Full | Number of VPN applications |
VPN Profiles | vpn_profiles | Number | Full | Number of VPN profiles |
VPN FIPS | vpn_fips | Enabled / Disabled | Full | Use only Federal Information Processing Standards (FIPS)-compliant algorithms and libraries for cryptography. First usage in firmware version 8.3.2, 9.0.1, and 9.1.0 |
VPN Clients | ||||
Client-to-Site Tunnels | vpn_client2site_tunnels | Number | Full | Number of all client-to-site tunnels |
Client-to-Site Tunnels with Windows Clients | vpn_client2site_windows | Number | Full | Number of client-to-site tunnels with Windows clients |
Client-to-Site Tunnels with Mac Clients | vpn_client2site_mac | Number | Full | Number of client-to-site tunnels with Mac clients |
Client-to-Site Tunnels with Linux Clients | vpn_client2site_linux | Number | Full | Number of client-to-site tunnels with Linux clients |
Client-to-Site Tunnels with BSD Clients | vpn_client2site_bsd | Number | Full | Number of client-to-site tunnels with BSD clients |
Client-to-Site Tunnels with Android Clients | vpn_client2site_android | Number | Full | Number of client-to-site tunnels with Android clients |
Client-to-Site Tunnels with IPsec Clients | vpn_client2site_ipsec | Number | Full | Number of client-to-site tunnels with IPsec clients |
Client-to-Site Tunnels with L2TP Clients | vpn_client2site_l2tp | Number | Full | Number of client-to-site tunnels with L2TP clients |
Client-to-Site Tunnels with PPTP Clients | vpn_client2site_pptp | Number | Full | Number of client-to-site tunnels with PPTP clients |
VPN Tunnels | ||||
Dynamic Path Selection (SD-WAN) | vpn_dynamic_path_selection | Enabled / Disabled | Full | Indicates if at least one VPN tunnel uses SD-WAN |
Dynamic VPN Routing | vpn_dynamic_vpn_routing | Enabled / Disabled | Full | Shows if dynamic routing via VPN tunnels is enabled |
SSL VPN | vpn_sslvpn | Enabled / Disabled | Full | Shows if SSL VPN is enabled for the VPN service |
Single Routing Table | vpn_single_routing_table | Enabled / Disabled | Full | Show if the VPN routes are added to the main routing table, or if separate routing tables are used |
Dyn Mesh | vpn_dynamic_mesh | Enabled / Disabled | Full | Shows if Dyn Mesh is enabled for the VPN service |
IPsec Site-to-Site Tunnels | vpn_site2site_tunnels_ipsec | Number | Full | Number of site-to-site tunnels with IPsec |
TINA Site-to-Site Tunnels | vpn_site2site_tunnels_tina | Number | Full | Number of site-to-site tunnels with TINA |
TINA Site-to-Site Transports | vpn_site2site_tunnels_tina_transports | Number | Full | Number of site-to-site TINA VPN transports |
Down Site-to-Site Tunnels | vpn_site2site_tunnels_down | Number | Full | Number of site-to-site TINA VPN transports or IPsec tunnels that are currently down (for whatever reason) |
VPN Tunnels with Enabled Dynmesh | vpn_site2site_tunnels_dynmesh_enabled | Number | Full | Number of VPN tunnels with enabled dynmesh |
SD-WAN-VPN Tunnels with Enabled Dynmesh | vpn_site2site_tunnels_sdwan_dynmesh_enabled | Number | Full | Number of SD-WAN-VPN tunnels with enabled dynmesh |
SD-WAN-VPN Tunnels | vpn_site2site_tunnels_sdwan_enabled | Number | Full | Number of SD-WAN-VPN tunnels |
Connected SSL-VPN Clients | vpn_sslvpn_clients | Number | Full | Number of connected SSLVPN clients |
Authentication | ||||
DC Client | auth_dcclient | Enabled / Disabled | Full | Authentication via DC Agent / DC Client enabled/disabled |
TS Agent | auth_tsclient | Enabled / Disabled | Full | Authentication via TS Agent / TS Client enabled disabled |
Wi-Fi AP | auth_wifiap | Enabled / Disabled | Full | Authentication via Wi-Fi access point enabled/disabled |
Networking | ||||
WWAN (3G & 4G) | net_umts | Enabled / Disabled | Full | Is UMTS/LTE setup enabled or disabled |
WWAN Modem | net_umts_modem | Text | Full | installed/configured WWAN modem (only 4G modem) |
WWAN Provider | net_umts_provider | Text | Full | Provider (only 4G modem) |
WWAN Connection Type | net_umts_type | Text | Full | used type of connection of the modem (only 4G modem) |
xDSL | net_dsl | Enabled / Disabled | Full | Is DSL connection enabled or disabled |
Barracuda DSL Modem | net_barracuda_dsl_mode | bridgemode / | Full | How is the Barracuda DSL Modem configured |
Barracuda DSL Modem | net_barracuda_dsl_wan1 | Enabled / Disabled | Full | Is DSL/WAN1 enabled or disabled |
Barracuda DSL Modem | net_barracuda_dsl_wan2 | Enabled / Disabled | Full | Is WAN2 enabled or disabled |
DHCP | net_dhcp | Enabled / Disabled | Full | Is DHCP connection enabled or disabled |
Wi-Fi | wifi | Enabled / Disabled | Full | Is Wi-Fi connection enabled or disabled |
HA | net_ha | Enabled / Disabled | Full | Is HA setup enabled or disabled |
IPv6 | net_ipv6 | Enabled / Disabled | Full | Is IPv6 setup enabled or disabled |
Network Ports Used | net_portusedperc | Percent | Full | Percentage of network ports used |
VLANs | net_vlans | Number | Full | Number of VLANs used on the box |
Ethernet Bonds | net_bonds | Number | Full | Number of bonded network ports |
Uplinks | net_portused | Number | Full | Number of network ports in use |
SSD | ||||
Media Wearout Level of Disk Number 1 | ssd1_wearout | Number | Full | Normalized value indicating the sanity of the SSD (Intel SSDs) disk number 1: 100=brand new; 1=worn out |
Media Wearout Level of Disk Number 2 | ssd2_wearout | Number | Full | Normalized value indicating the sanity of the SSD (Intel SSDs) disk number 2: 100=brand new; 1=worn out |
Endurance Level of Disk Number 1 | ssd1_endurance | Number | Full | Normalized value indicating the prospective lifetime of the SSD (Innodisk SSDs) disk number 1: 0=brand new; 100=at the end of the lifetime as defined by the manufacturer |
Endurance Level of Disk Number 2 | ssd2_endurance | Number | Full | Normalized value indicating the prospective lifetime of the SSD (Innodisk SSDs) disk number 2: 0=brand new; 100=at the end of the lifetime as defined by the manufacturer |
Control Center | ||||
Managed Firewalls | managed_boxes_total | Number | Minimal+Full | Number of CloudGen Firewalls managed by the Control Center |
Managed Enabled Firewalls | managed_boxes_enabled | Number | Minimal+Full | Number of enabled CloudGen Firewalls managed by the Control Center |
Events | ||||
Firmware Update | firmware_update | Json Object | Minimal+Full | Report success or errors with regard to the automatic download and installation of firmware updates |
License | license | Error String | Minimal+Full | Only on SecureEdge appliances: report if a license stamp request fails |
Virus scanner | virus_scanner | Json Object | Full | Report failed virus scans. First usage in firmware version 8.3.2, 9.0.1, and 9.1.0 |
Enable Telemetry Data
Sending usage statistics aids in future product planning. You can enable the sending of full (Full System Diagnostics and Analytics) or minimal (Essential Health and System Data) usage statistics.
Go to CONFIGURATION > Configuration Tree > Box > Administrative Settings.
In the left menu, click Telemetry Data.
Click Lock.
In the Telemetry Data Options section, select one of the following options:
Full System Diagnostics and Analytics
Essential Health and System Data
(optional) If you want the firewall to log submitted telemetry values, then activate the check box for Log Telemetry Data.
Click Send Changes and Activate.
Enable / Disable Telemetry Data from a Control Center
You can enable/disable the sending of telemetry data by selecting multiple managed boxes (bulk configuration) in a list in the Control Center.
Go to CONFIGURATION > Configuration Tree > Multi Range.
Enlarge the list view area on the right side of the main view.
Select all boxes for which you want to enable/disable the sending of telemetry data.
Right-click on a selected box.
Expand Share Telemetry Data in the list.
From the drop-down menu, select one of the following options:
Full System Diagnostics and Analytics – All telemetry data is sent.
Essential Health and System Data – Only a basic set of telemetry data is sent.
Disabled – Do not send any telemetry data.
If the column Telemetry is selected to be displayed, the cell contents will display the telemetry status for each appliance:
