This article provides information on how to enable multi-IP for the Barracuda Web Application Firewall instances deployed on cloud platforms (Microsoft Azure, AWS) through REST API.
To Enable Multi-IP for Azure Instances
Enable Azure Multi-IP with AD: (Username/ Password)
curl http://<WAF IP>:<Port>/restapi/v3.2/system/azure-config -X PUT -u “<token>:” -H Content-Type:application/json
-d’{“enable-multi-ip”:“Yes”,“azure-cloud-type”:“Azure Public Cloud”, “subscription-id”:“<Subscription ID>“,
“user-id”:“XXX@cudazure.onmicrosoft.com”, “user-password”:“XXXXXX”, “resource-group”:“<Resource Group Name>“, “login-choice”:“AD User/Password”}'Enable Azure Multi-IP with Azure service principals:
curl http://<WAF IP>:<Port>/restapi/v3.2/system/azure-config -X PUT -u “<token>:” -H Content-Type:application/json
-d’{“enable-multi-ip”:“Yes”,“azure-cloud-type”:“Azure Public Cloud”, “subscription-id”:“<Subscription ID>“,
“client-id”:“<Client ID>“, “tenant-id”:“<Tenant ID>“, “secret-key”:“<Secret Key>“, “resource-group”:“<Resource Group Name>“,
“login-choice”:“Service Principal”}'Create a service using the Allocate IP option:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json -d’{“name”:“testserv1",
“type”:“HTTP”, “port”:“80", “cloud-ip-select”:“Allocate New IP”}'Create a service using the IP address:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json
-d’{“name”:“testserv1”,“type”:“HTTP”,“port”:“80”, “cloud-ip-select”:“Enter IP Address”, “ip-address”:“10.8.6.10”}'Create a service using the system IP:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json
-d’{“name”:“testserv1",“type”:“HTTP”,“port”:“80", “cloud-ip-select”:“System IP Address”}
The Barracuda Web Application Firewall instances deployed on Azure include the Azure Configuration tab under the BASIC tab. You can enable the Multi-IP address feature of Microsoft Azure through the web interface.
To Enable Multi-IP for AWS Instances
You can enable Multi-IP for the Barracuda Web Application Firewall instances deployed on AWS through REST API.
Enable AWS Multi-IP:
curl http://<WAF IP>:<Port>/restapi/v3.2/system -X PUT -u “<token>:” -H Content-Type:application/json
-d’{“enable-multi-ip”: “Yes”}'Create a service using the Allocate IP option:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json -d’{“name”:“testserv1",
“type”:“HTTP”, “port”:“80", “cloud-ip-select”:“Allocate New IP”}'Create a service using the IP address:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json
-d’{“name”:“testserv1”,“type”:“HTTP”,“port”:“80”, “cloud-ip-select”:“Enter IP Address”, “ip-address”:“10.8.6.10”}'Create a service using the system IP:
curl http://<WAF IP>:<Port>/restapi/v3.2/services -X POST -u “<token>:” -H Content-Type:application/json
-d’{“name”:“testserv1",“type”:“HTTP”,“port”:“80", “cloud-ip-select”:“System IP Address”}
To enable the Multi-IP configuration through the web interface, go to the BASIC > IP Configuration page and set Enable Multi IP Configuration to Yes.