We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Update the IPS Security Database on the Control Center

  • Last updated on

The IPS signature database can be updated centrally on the Barracuda NextGen Control Center, or offline by copying the signature files from a F-Series Firewall with up-to-date IPS signatures to the Control Center. Managed firewalls are updated directly by the Control Center.

An Energize Updates subscription is required to receive IPS security updates. For more information, see Licensing. For information on how to c heck the subscription status of the IPS Database, see How to Check the IPS Security Subscription Status.

Online IPS database updates

To perform an online update of the IPS database on the box layer of the Control Center:

  1. Go to CONTROL > Server.
  2. Under the IPS section on the right, click Update.
  3. Select Check for updates to check for available IPS database updates and install them.

You can also use the following options:

  • Roll back to previous version – Revert the IPS database to any version that was previously installed.
  • Roll back to latest version – Revert the IPS database to the last installed version.

Offline IPS database updates

Use the offline update feature if your Control Center has no access to the Internet by coping the update files from an up-to-date NextGen Firewall F-Series to the Control Center. The update files are stored in /var/phion/mcdownload/ips/files on the F-Series Firewall.

Step 1. Create a directory for the offline patterns
  1. Log in to the Control Center via SSH.
  2. Create a directory for the update files. E.g., /var/phion/tmp/ipsoffline/
Step 2. Set the update mode to offline

Change the IPS update mode to use the directory created in step 1.

  1. Log in to the Control Center.
  2. Go to CONTROL > File Updates .
  3. From the Area Configuration dropdown list, select IPS pattern updates.
  4. Click Set Area Config.
    set_area_ips.png
  5. Set the Mode to Offline .
    area_02.png
  6. In the Offline Source Path field, enter the path of the IPS pattern source directory created in step1. E.g., /var/phion/tmp/ipsoffline/
  7. Click OK .
Step 3. Copy the update files from a F-Series Firewall  

Use the up-to-date IPS patterns on a F-Series Firewall as the source for the offline update of the Control Center IPS patterns.

  1. Log in to a F-Series Firewall.
  2. Copy all files in the /var/phion/mcdownload/ips/files folder to the Offline Source Path folder configured in Step1 on your Control Center.
Step 4. Trigger IPS update on the Control Center

On the firewall/box level of the Control Center:

  1. Go to CONTROL > Server .
  2. In the IPS section on the right, click Update.

Offline updates to the IPS database are shown in the IPS version history and are also logged.

Last updated on