We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

FSC Container

  • Last updated on

The Secure Connector running firmware 1.1.0 or higher can now run a single LXC container. Linux containers must be enabled in the Secure Connector configuration. The container is assigned an IP address from the data network defined on the Control Center.

The container is distributed and installed via the firmware update page on the Control Center. The container is transferred and then unpacked on the Secure Connector. All deb packages are installed and the doit script is executed during deployment. The /root/start.sh script is executed every time the Secure Connector is started. To allow SSH access, a Secure Connector firewall management rule must be added to allow traffic into the container zone.

Resource Limits for Containers

  • 1 CPU core
  • 512 MB RAM
  • 2 GB Storage 

Container Requirements

Each container must be in a .tgz archive. The file name must include the string container. E..g, my_container.tgz or my_container_v01.tgz

  • deb packages – The deb packages must be compiled for ARM-HF.
  • doit – This script is executed during the installation.
  • /root/start.sh – This script is executed every time the Secure Connector boots and after the installation of the container.

Enable Container Support

  1. Go to your cluster > Cluster Settings > Secure Connector Editor.
  2. Click Lock.
  3. Double-click to edit the device or Secure Connector template.
  4. In the left menu, click Container Settings.
  5. Select the Container enabled check box.

  6. Enter the Root Password for container support on the Secure Connector.
    container_settings.png
  7. Click OK.

  8. Click Activate.

Create a Firewall Rule

Add a Secure Connector firewall management rule to allow SSH access into the container zone. Configure the rule with the following settings:

  • Allow – Select the check box.
  • Source ZoneSelect CONT. This is the zone associated with the container.
  • Services – Select SSH.

fsc_container_rule.png

For more information, see How to Create FSC Firewall Management Rules.

Install a Container via Firmware Update in NextGen Admin

Containers are installed just like Secure Connector firmware updates. Copy the container .tgz file to the Control Center and distribute it just like a firmware update. When the archive is on the Secure Connector, the deb packages are installed and the installation scripts executed.

For more information, see FSC Firmware Update.

Last updated on