Application Control expands the scope of the firewall engine to include application type as a matching criteria. If an access rule matches that Application Control is enabled for, the application ruleset is processed from top to bottom and the action set in the first matching application rule is executed (block or deny). Application detection for applications using SSL-encrypted connections allow for more granular control when SSL Interception is enabled. Application Control is currently limited to IPv4. Application definition updates for managed Barracuda NextGen F-Series Firewalls are distributed via the Control Center. Phion legacy-licensed Control Centers do not support updating application definitions via Energize Updates.
In this article:
Supported NextGen Firewall F-Series Models
Feature | Supported NextGen Firewall F-Series Model |
---|---|
Application Control | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates subscription except VF10. On hardware models without valid Energize Updates subscription or with a legacy phion license, Application Control is limited to detecting applications only. |
SSL Interception | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates subscription, except F10, VF10, and F100/F101. |
URL Filter | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates subscription, except F10 and VF10 |
Virus Scanning | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates and Malware subscriptions, except F10 and VF10 |
Advanced Threat Detection | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates, Malware, and Advanced Threat Detection subscriptions, except F10, VF10, and F100/F101. |
File Content Scan | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates and Malware subscriptions, except F10 and VF10. |
Safe Search, YouTube for Schools, and Google Accounts | Available on all Barracuda NextGen Firewall F-Series models with valid Energize Updates subscription, except VF10. |
Enable Application Control
- Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
- Click Lock.
- In the left menu, expand Settings and click Setup. The Ruleset Setup window opens.
Verify that the correct Feature Level is selected:
Feature Required Firewall Feature Level Application Control 5.4.0 or higher SSL Interception 5.4.0 or higher URL Filter 5.4.2 or higher Virus Scanning in the Firewall 5.4.3 or higher ATD 6.0.0 or higher Safe Search 6.1.0 or higher YouTube for Schools 6.1.0 or higher File Content Scan 6.2.0 or higher Google Accounts 6.2.0 or higher - To enable the use of application rules, select Use Application Ruleset from the Application Ruleset list.
- Click OK.
- Click Send Changes and Activate.