We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see https://campus.barracuda.com/doc/71862301/ for further information on our EoS policy.

Forwarding Firewall Settings

  • Last updated on

Aside from the global firewall limits it is also possible to set the limit specific to the forwarding firewall in the Forwarding Settings (CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall). After changing these settings a Firmware Restart (CONTROL > Box) is required.

Forwarding Limits

  • Max. Forwarding Session/Src – Maximum number of sessions per source IP address (min: 1, default: 8192).

    With eventing activated (parameter Session/Src Limit Exceeded enabled), the event FW Global Connection per Source Limit Exceeded [4024] is generated when the limit is exceeded.

  • Max. Forwarding UDP/Src – Maximum number of UDP sessions per source IP (min: 1, default: 512).

    With eventing activated (parameter UDP/Src Limit Exceeded enabled), the event FW UDP Connection per Source Limit Exceeded [4008] is generated when the limit is exceeded.

  • Max. Forwarding Echo/Src – Maximum number of ICMP Echo sessions per source IP (min: 1, default: 512).

    With eventing activated (parameter Echo/Src Limit Exceeded enabled), the event FW ICMP–ECHO Connection per Source Limit Exceeded [4026] is generated when the limit is exceeded.

  • Max. Forwarding Other/Src – Maximum number of sessions of any IP protocol (except TCP, UDP, ICMP) per source IP address (min: 1, default: 128).

    With eventing activated (parameter Other/Src Limit Exceeded enabled), the event FW OTHER–IP Connection per Source Limit Exceeded [4028] is generated when the limit is exceeded.

  • Max. Pending Forward Accepts/Src – Maximum number of pending accepts per source IP address (min: 5, max: 1024, default: 64).

    With eventing activated (parameter Accept Limit Exceeded enabled), the event FW Pending TCP Connection Limit Reached [4006] is generated, when this limit is exceeded.

  • Load Protection Exemptions – This section lets you specify IP addresses and ports through which the firewall must be manageable even if load protection is already blocking connection requests due to an ongoing DoS/DDoS attack.

SOCKS Forwarding

  • Socks Port on 1st IP – Port of socks connections on first server IP address (default: 0). Set to 0 to disable SOCKS server.
  • Socks Port on 2nd IP – Port of socks connections on second server IP address (default: 0). Set to 0 to disable SOCKS server.

RPC Handling

For more information, see:

Layer 2 Bridging

For more information, see: Bridging.

Authentication

For more information, see Firewall Authentication and Guest Access.

Authentication Messages

For more information, see Firewall Authentication and Guest Access

Landing Page

For more information, see How to Configure Wi-Fi Guest Access

VoIP/H.323 and VoIP/SIP

These section offer settings for the H323 and SIP firewall plugins.

Barracuda Networks recommends using the SIP proxy instead of the legacy SIP firewall plugin. For more information, see SIP Proxy.

For more information, see

IPv6 Autoconfig

Enables or disables IPv6 Autoconfiguration and allows you to create IPv6 prefixes. For general information on the implementation of IPv6 on the Barracuda NG Firewall, see: How to Use IPv6.

DNS Blacklist

For more information, see How to Configure DNS Blacklisting.

Last updated on