It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

Default Forwarding Firewall Rules

  • Last updated on

The Forwarding Firewall ruleset contains default rules that fit most applications and services that are handled by the Barracuda CloudGen Firewall. The following table lists all Forwarding Firewall rules that are preconfigured for Cloud instances.

Default Forwarding Firewall Rules for Cloud Instances

#Default StateTypeNameComment
0DisabledBlockBlockATDQuarantineBlocks infected hosts that are block-listed by ATP
1EnabledApp RedirectCLOUD-CC-MGMT-COMMRedirect incoming Control Center management traffic on the DHCP interface to the management IP address.
2EnabledApp RedirectCLOUD-SETUP-MGMT-ACCESSRedirect incoming management traffic on the DHCP interface to the management IP address.
3EnabledApp RedirectCLOUD-SETUP-WEBUI-MGMT-ACCESSRedirect incoming management traffic to the WebUI on the DHCP interface to the management IP address.
4EnabledApp RedirectCLOUD-SERVICE-VPN-ACCESSRedirect incoming management traffic to the WebUI on the DHCP interface to the management IP address.
5EnabledApp RedirctCLOUD-SERVICE-VPN-ACCESS-IPSECRedirect IPsec VPN connections to the VPN service listening on the virtual server IP address.
6DisabledApp RedirectCLOUD-LB-PROBERedirect probes from the load-balancer TCP port 6500 to fwauth on port 450.
7EnabledPassCLOUD-NET-2-INTERNETAllow all traffic from the detected subnets of the virtual network or VPC to the Internet.
8EnabledPassCLOUD-NET-2-CLOUD-NETAllow all traffic between the detected subnets of the virtual network or VPC.
9DisabledPassCLOUD-NET-2-VPN-SITEAllows all traffic between the detected local cloud networks and remote networks of VPN site-to-site tunnels.
10EnabledPassCLOUD-NET-2-VPNCLIENTSAllows unrestricted access for Barracuda Network Access Clients coming in through interface pvpn0 to the trusted LAN.
Note that PPTP-based access is not included in this rule.
11EnabledBlockBLOCKALLBlocks all IP traffic.