It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Create and Activate a Dynamic Access Rule

  • Last updated on

Dynamic access rules are used for granting temporary access to resources without having to edit the firewall ruleset. Dynamic rules are inactive by default and must be manually enabled by the administrator. Dynamic rules can be enabled or disabled via Barracuda Firewall Admin, CudaLaunch, or the SSL VPN web portal. The admin only needs access to one of these services or the FIREWALL > Dynamic page in Barracuda Firewall Admin, no direct access to the forwarding firewall ruleset is required.

In Barracuda Firewall Admin you can configure the action taken to enable the rule, and the action on expiry when the set time period expires. Select the enable and disable action depending on whether you are using a positive (enable a Pass access rule) or negative (disabling a Block access rule) logic.

  • Enable – Enables the access rule.
  • Disable – Disables the access rule.
  • Disable & Terminate – Disables the rule and terminates all existing connections based on this rule.
  • Block – Blocks all traffic that explicitly matches this rule. No further rules are evaluated.
  • Block & Terminate – Blocks all traffic matching this rule and terminates all existing connections based explicitly on this rule. No further rules are evaluated.
  • None – None.

Create a Dynamic Access Rule

  1. Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
  2. Click Lock.
  3. Edit the access rule you want to make dynamic.
  4. Enable Dynamic Rule.
     FW_Dynamic.png
  5. Click OK.
  6. Click Send Changes and Activate.

Enable and Disable Dynamic Rules via Barracuda Firewall Admin

  1. Open the FIREWALL > Dynamic page.
  2. Double click a dynamic rule to open the Change Dynamic Rule dialog.
    dyn.png

  3. Select Enable to enable the rule.
  4. If you want the rule to be enabled temporarily enter the time span in the Timer section.
  5. Select an action from the Action on expiry drop down list.

  6. Click OK.
  7. Click Send Changes and Activate.

Enable and Disable Dynamic Rules via SSL VPN or CudaLaunch

Create a dynamic access rule resource to be able to use the web interface to enable or disable dynamic access rules.