We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

Control Center Syslog Service

  • Last updated on

The CC Syslog service collects log messages from NextGen F-Series Firewalls that are managed by the Barracuda NextGen Control Center and streams those log messages to an external log host or sends them to the HA partner. Syslog streaming consists of three major steps: 

Log Reception

Log reception via port 5144 and/or 5143:

cc_syslog_01.png

SSL-encrypted connections on port 5143 are used for log reception of managed boxes that do not use management tunnels. Using SSL allows for both encryption and authentication.

Managed firewalls using a remote management tunnel connect to the syslog engine on port 5144. These connections are unencrypted and unauthenticated, so the default firewall rules restrict access managed boxes and access via VPN tunnel.

Log Processing

cc_syslog_02.png

Log Delivery

Log Delivery to Local Disk

cc_syslog_03.png

 

Log Delivery via Private Uplink (HA Sync)

Using override IP addresses is mandatory in this scenario:

cc_syslog_04.png

Log Delivery by Relaying

The F-Series supports active querying and passive receiving via SSL-encrypted connection or passive receiving without encryption. 

Active SSL Querying

If read access is not possible (for example, because log host is down), transferring log messages is not possible. This method of transferring is not recommended for use in an HA Control Center cluster.

cc_syslog_05.png

SSL Passive Receiving

Used for an HA Control Center cluster because the external log host does not need to know which partner is currently active for syslog streaming to work.

cc_syslog_06.png

Plain Passive

You can also do standard syslog streaming without an SSL connection if needed.

Last updated on