It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

Firewall Forwarding Settings

  • Last updated on

Aside from the global firewall limits, it is also possible to set the limit specific to the forwarding firewall in the Forwarding Settings (CONFIGURATION > Configuration Tree > Box > Assigned Services > Firewall). After changing these settings a Firmware Restart (CONTROL > Box) is required.

Forwarding Limits

  • Max. Forwarding Session/Src – Maximum number of sessions per source IP address (min: 1, default: 8192).

    With eventing activated (parameter Session/Src Limit Exceeded enabled), the event FW Global Connection per Source Limit Exceeded [4024] is generated when the limit is exceeded.

  • Max. Forwarding UDP/Src – Maximum number of UDP sessions per source IP (min: 1, default: 512).

    With eventing activated (parameter UDP/Src Limit Exceeded enabled), the event FW UDP Connection per Source Limit Exceeded [4008] is generated when the limit is exceeded.

  • Max. Forwarding Echo/Src – Maximum number of ICMP Echo sessions per source IP (min: 1, default: 512).

    With eventing activated (parameter Echo/Src Limit Exceeded enabled), the event FW ICMP–ECHO Connection per Source Limit Exceeded [4026] is generated when the limit is exceeded.

  • Max. Forwarding Other/Src – Maximum number of sessions of any IP protocol (except TCP, UDP, ICMP) per source IP address (min: 1, default: 128).

    With eventing activated (parameter Other/Src Limit Exceeded enabled), the event FW OTHER–IP Connection per Source Limit Exceeded [4028] is generated when the limit is exceeded.

  • Max. Pending Forward Accepts/Src – Maximum number of pending accepts per source IP address (min: 5, max: 1024, default: 64).

    With eventing activated (parameter Accept Limit Exceeded enabled), the event FW Pending TCP Connection Limit Reached [4006] is generated, when this limit is exceeded.

  • Load Protection Exemptions – This section lets you specify IP addresses and ports through which the firewall must be manageable even if load protection is already blocking connection requests due to an ongoing DoS/DDoS attack.

RPC Handling

For more information, see:

Authentication

For more information, see Firewall Authentication and Guest Access.

Authentication Messages

For more information, see Firewall Authentication and Guest Access.

Guest Access

For more information, see Firewall Authentication and Guest Access.

IPv6 Autoconfig

Enables or disables IPv6 Autoconfiguration and allows you to create IPv6 prefixes. 

For more information, see IPv6.

DNS Sinkhole

VoIP/SIP