We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

Attention

Barracuda CloudGen Firewall version 8.0 is a cloud-only version. It is currently not available for on-premises deployments and can only be deployed in Microsoft Azure, Amazon Web Services, or Google Cloud Platform public clouds.

How to Configure File Content Filtering in the Firewall

  • Last updated on

To enforce a file content policy in the firewall, you must create an access rule to match your HTTP, HTTPS, FTP, SMTP, or SMTPS traffic. Enable Application Control, File Content Scan, and, optionally, SSL Inspection. You can also combine File Content Scan with URL Filter and User Agent policies. The policy objects are configured as a part of the application rule.

Before You Begin

Step 1. Enable File Content Scanning in a PASS Access Rule

Enable Application Control, File Content Scan, and, optionally, SSL Inspection for the access rule handling HTTP, HTTPS, FTP, SMTP, and/or SMTPS traffic.

  1. Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
  2. Click Lock.
  3. Double-click to open the access rule you want to apply the file content policy for.
  4. Click on the Application Policy link and select:
    • Application Control – required.
    • SSL Inspection – optional.
    • File Content Scan – required. 
      file_content_fw_01.png
  5.  If configured, select a policy from the SSL Inspection Policy drop-down list. For more information, see SSL Inspection in the Firewall.
  6. Click OK.
  7. Click Send Changes and Activate.

Step 2. Create Application Rule using File Content Filter Objects

  1. Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
  2. In the left menu, click Application Rules .
  3. Click Lock.  
  4. Create a PASS application rule. For more information, see How to Create an Application Rule
    • Source – Select the same source used in the matching access rule.
    • Application  Select Any to use only policy filtering. Otherwise, select an application object from the drop-down list to combine Application Control and File Content filtering.
    • Destination  Select the same destination used in the matching access rule.
  5. Click on the Policy link.
    FC_02.png
  6. Click File Content.
    FC_03.png
  7. Click on the File Content Policy in the list. For more information, see How to Create File Content Policies.
    FC_04.png
  8. Click OK
    FC_05.png
  9. Click Send Changes and Activate.

Monitoring File Content Filtering in the Firewall

Firewall Live View

Go to FIREWALL > History View and check the Info column for connections that were blocked due to the detected content.

FC_06.png

Firewall Monitor

Check the CONTENT element on the  FIREWALL > Firewall Monitor page to see a summary. You can filter and drill down based on source, time, and the associated action (allow, blocked, ...).

FC_07.png

 

 

Last updated on