It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-6)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Site Security Scanner

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Barracuda Email Gateway Defense
formerly Email Security

Overview Documentation Training Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Site Security Scanner

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-6)

Configuring Recipient Verification

Last updated on 2025-05-29 12:38:05

Proper configuration of recipient verification is crucial to ensure your mail gateway functions effectively. This prevents problems like backscatter, but also ensures that only mail for valid recipients is processed by Barracuda Networks.

It is highly recommended to enable recipient verification on your mail server. You can also configure recipient verification in Email Gateway Defense.

To configure recipient verification on your mail server, refer to the documentation provided by your e-mail provider. See also the following Microsoft articles:

To configure recipient verification in Email Gateway Defense:

Generate a user list using the following Advanced Configuration article.
Note that if you sync with Microsoft Entra ID and have on-premises resources that are not synced with Azure, you will need to add those accounts manually to Barracuda Networks. Otherwise, mail will be rejected.
Ensure directory integration is set to sync automatically so that the user list is up to date.
To enable recipient verification, go to Users > Default Policy, and set the Default policy for unmanaged users to Block.
All recipients on inbound mail are now checked against the user list configured in Barracuda Networks. If the recipient is not on the user list, the email is blocked.
To revert the changes, set the Default policy for unmanaged users to Scan. This will configure Email Gateway Defense to use your mail server for recipient verification.