It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Network Security

Support Services

Barracuda NextGen Firewall X

Overview Documentation Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

This Product is End-of-Life and End-Of-Support

End-Of-Life and End-Of-Support on December 1st, 2020: All Barracuda Firewall X-Series sales will cease; neither new sales nor any renewals will be available. If you currently hold a maintenance and support contract, you will continue to receive our award-winning support and services until your contract expires. Please see the End-Of-Life definition as described in the End of Support and End of Life Information.

Firewall Objects

Last updated on 2016-05-01 23:12:06

Firewall objects are named collections that represent specific networks, services, applications, user groups or connections when creating access rules. You can use the firewall objects that are preconfigured on the Barracuda NextGen Firewall X-Series, but you can also create custom firewall objects depending on your requirements. Firewall objects are re-usable which means that you can use one firewall object in as many rules as required. The following section explains the firewall objects that are available for use and configuration on the NextGen Firewall X-Series and contains articles on how to create the different firewall objects for your access rules.

Advantages of Firewall Objects

Using firewall objects gives you the following advantages:

Each firewall object has a unique name that is more easily referenced than e.g. an IP address or a network range.
Maintenance of the access rule set is simplified. When you update a firewall object, the changes are automatically updated in every rule that refers to this object.

Firewall Object Types

The following types of firewall objects are available for use and configuration:

Network Objects — Reference networks, IP addresses, or interfaces when configuring firewall access rules.
URL Policy Objects — (requires a Barracuda Web Security Subscription) Reference access restrictions for web sites. The NextGen Firewall X-Series provides a predefined list of URL categories that are available for blacklisting and whitelisting.
Service Objects — Create service objects to reference TCP/UDP ports for a service.
Connection Objects — Reference the egress interface and source (NAT) IP address for traffic matching a firewall access rule.
NAT Objects — Map IP addresses from one IP address range to another, e.g., to let two subnets communicate with each other.
User Objects — Reference lists of users and/or user groups for use within access rules.
Schedule Objects — Configure time restriction or scheduling tables that can be applied to access rules on an hourly, weekly or calendar date basis.
Application Objects — Reference lists of web applications and/or sub-applications when creating application aware firewall access rules. For more information, see Application Control.