We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Change the Root Password and Management ACL

  • Last updated on

Restricting access to the management interface of the Barracuda NextGen Firewall F-Series is important for network security. Barracuda Networks strongly recommends changing the root password after the first login. Use the management access control list to whitelist IP addresses that are allowed to connect via NextGen Admin to the firewall or Control Center.

In this article:

Change the Root Password

  1. Go to CONFIGURATION > Configuration Tree > Box > Administrative Settings.
  2. In the left menu, click System Access.
  3. Click Lock.
  4. In the Root Password section, enter the password for the root user.

    Passwords can consist of small and capital characters, numbers, and non alpha-num symbols. Barracuda NextGen Admin rates the password strengh according to the entered caracters. For more information, see the NextGen Admin password strength policy in Configuration Pages - Access and Controls.

  5. Click Send Changes and Activate.

Manage the Management Access Control List

Enter the IP addresses or networks for which access to the management IP on TCP ports 22 (secure shell) and 800-820 is granted. Access from all other addresses to these port/addresses are denied. By default, access is allowed from an arbitrary address. Changing the ACL does not terminate active admin sessions. To enforce ACL changes, manually terminate active sessions on the FIREWALL > Sessions page.

When deploying a CloudGen Firewall in Azure, the ACL is enforced only when the interface is changed from dhcp to ethx and assigned a static IP address. For more information, see Reserved, Static and Public IP Addresses in the Azure Cloud using ASM.

  1. Go to CONFIGURATION > Configuration Tree > Box > Administrative Settings.
  2. In the left menu, click System Access.
  3. Click Lock.
  4. In the Access Control List section, click + and add the IP addresses from which the Barracuda NextGen Firewall F-Series can be administered.
  5. Click Send Changes and Activate.
Last updated on