When you place a standalone Barracuda NG Firewall at a remote site, you can enable access to it over the Internet for remote management and configuration. You can also enable remote access for Barracuda Networks Technical Support if direct access to the system is required for troubleshooting.
Create an App Redirect Firewall Rule
To enable remote management access to the Barracuda NG Firewall from the Internet, create an App Redirect Rule for the management ports to the internal management IP address.
Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
- From the Rule Lists menu in the left pane, select Access Rules.
- Click Lock.
- Create an App Redirect rule with the following settings:
- Source – Select Internet. To restrict access to specific IP addresses, you can explicitly enter the IP addresses or create a network object for reference.
- Service – Select NGF-MGMT-STAT (TCP 807 Single Point Of Entry)
- Destination – If the Barracuda NG Firewall connects to the Internet via a dynamic address, select the network object to match your connection (DHCP Local IP, DSL Local IP or 3G Local IP). If the system uses a static public IP address, enter this address.
- Redirection – In the Local Address field, enter your internal management IP address (MIP) as defined in the network settings.
- Click Send Changes and Activate.
You can now manage your Barracuda NG Firewall over the Internet with the Barracuda NG Admin application. Instead of connecting to the management IP address of the unit, log into the system via the public IP address of your unit.