Barracuda NG Firewall « Barracuda Networks Product Blog

Barracuda NG Firewall

Barracuda NG Firewall 5.2.3 firmware released

Wednesday, March 14th, 2012

Posted by: Oliver Braekow, product manager

The Barracuda NG Firewall 5.2.3 firmware release includes a number of new features requested by customers. This blog includes a summary of the key changes included in 5.2.3.

GUI simplification and renaming to better match industry standards:

Large components of the Barracuda NG Firewall interface were recently revised to be more intuitive, allowing faster set up of a single firewall unit, and better reflecting industry naming standards. Existing customers, already familiar with the previous interface, will still easily find their way around the intuitive interface. We have provided a complete list of changes in the release notes starting on page 34. This list should help new customers to get up and running faster. The Barracuda NG Firewall Migration and Release Notes 5.2.3 are available from www.barracuda.com/doc

iOS Mobile device VPN Support

The Barracuda NG Firewall now also supports the IPsec XAUTH authentication standard which is used by the built-in IPSec VPN client for iOS mobile devices. This allows customers to easily create IPSec VPN tunnels between Barracuda NG Firewalls and mobile devices such as iPads or iPhones. For details please see the chapter entitled “How to Configure IPsec Client to Site Access with iOS Devices” in the Barracuda NG Firewall Administrator’s Guide 5.2.3 page 573 on www.barracuda.com/doc

IPFIX Support

Firmware release 5.2.3 introduces IPFIX streaming support (Internet Protocol Flow Information Export) to all Firewall Audit logs and HTTP proxy access cache log info to an external IPFIX/NetFlow Collector. This addresses a long standing feature request and is useful for larger organizations and managed security service providers (MSSPs) with their own network surveillance infrastructure. As a result, customers can add the Barracuda NG Firewall to their existing network monitoring infrastructure.

Support for Xen virtualization

Included in firmware 5.2.3 is support for Citrix Xen and open source Xen hypervisors. Administrators can now deploy either XVA, ZIP or OVF virtual appliances depending on their environment. Please see the blog post “Virtualization and Barracuda NG Firewall” for additional details.

Lightweight NAC client with Microsoft Action Center Integration

Additionally, the NAC Client 2.0 SP6 and NAC Client 3.0 compares the user defined network access policy at the VPN Server in NG Firewall before access to the network is granted through the Windows Action Center. With this, a customer can quickly implement a lightweight network access policy without the need and associated management overhead of a full NAC server. This feature is included with the standard Barracuda NG Firewall VPN client and is available with every Barracuda NG Firewall appliance and virtual system without needing an additional license. For additional detail please see our blog post “Introducing lightweight Network Access Control for VPN Clients at no extra cost”.

Mac Client 3.1

Not technically part of the 5.2.3 firmware release but released simultaneously is an update to the NG Firewall VPN Client for Mac OS. The new version 3.1 includes several minor bug fixes and the number one requested feature by early adopters: Integration to the Keychain. This allows users to store the VPN password securely in the Keychain. Upon connecting to the VPN server, the VPN Client transparently reads the password from the Keychain and submits to the VPN Server, ultimately giving the impression of a single-sign-on methodology.

Available Now

Barracuda NG Firewall firmware release 5.2.3, virtual images for VMware and XenServer as well as the NG Firewall VPN Client for Mac OS 3.1 are available immediately on login.barracudanetworks.com/doc . New hardware units will be shipped with 5.2.3 firmware shortly. As always, we look forward to your feedback as we strive to deliver the best product for organizations of all sizes.

Posted in Barracuda NG Firewall, Uncategorized | No Comments »

Introducing lightweight Network Access Control for VPN Clients at no extra cost

Thursday, March 8th, 2012

Posted by: Markus Lang, product manager

Barracuda Networks has recently introduced the latest versions of its Barracuda NG Network Access Control and VPN Client- the Barracuda NG Network Access Client 3.0 and Service Pack 6 for the Barracuda NG Network Access Client 2.0 both come with a lot of exiting new features.

In case you haven’t had time to browse through the release notes, I wanted to highlight one specific feature that we internally like to call “Diet NAC” or “NAC light” (NAC = Network Access Control).

The full Barracuda NG Network Access Client provides state-of-the-art NAC features such as a managed personal firewall, periodic client health assessments, access control based on client health status, patch level, update status of AV patterns, etc.

The Barracuda NG VPN client, included with every Barracuda NG Firewall unit, now provides the possibility to enforce Windows Security Center settings on client machines running Windows Vista or Windows 7.

Sounds great -but what does that mean?

In a nutshell, this new feature allows administrators to centrally enforce the usage of Windows Security settings on every client notebook/PC, which can include the following policies:

• Microsoft Network Firewall must be enabled
• Windows Updates must be enabled
• Windows Virus Protection must be enabled
• Windows Spyware Protection must be enabled
• Internet Security Settings must be enabled
• All of the above or any combination

Image 1: Enforcing Windows Security Settings (click to enlarge)

In case the client does not follow the respective access policy, access to the corporate network will be denied and a meaningful dialogue with instructions on how to change the Windows Security Settings within the Windows Action Center settings will be presented to the client. Also of note, there is no automatic reconnect in case the client changes the Windows Action Center settings to comply with the corporate access policy. Thus, the client still needs to reconnect manually.

Note:
For more information please visit the Barracuda NG Firewall product overview page or is available for download on the Barracuda Portal- the document title is: Barracuda NG Network Access Client Administration Guide. For more information on the Windows Security Center and its features please refer to http://windows.microsoft.com/en-US/windows7/Understanding-security-and-safer-computing

Preliminaries:
• Barracuda NG Firewall Firmware versions 5.2.3, 5.0.7 or 4.2.18
• Barracuda NG Network Access Client 2.0 SP6
• Barracuda NG Network Access Client 3.0
• Windows Vista and higher

Tags: Network Access Control, VPN, VPN Client, Windows
Posted in Barracuda NG Firewall | No Comments »

Virtualization and the Barracuda NG Firewall

Monday, March 5th, 2012

Posted by: Oliver Braekow, product manager

Starting with firmware release 5.2.3 virtual Barracuda NG Firewall images are not only available as VM Ware images but also as XEN compatible images for XEN Server on login.barracuda.com.

Barracuda provides images for the open Source XEN version (.zip Archive file), as well as images for Citrix Xen Server that support paravirtualization (.pv.xva file) and full virtualization (.hvm.xva file). This will enable customers and service providers to run the Barracuda NG Firewall in their XEN infrastructure and enjoy all the benefits of their virtual environment like: auto provisioning, low TCO, hardware independence, easy hardware migration etc.

We’ve seen requests for official XEN server support especially from medium to large managed security service providers as well as enterprises and are happy to provide this now. If you’d like to test this out yourself and do not yet have a XEN Server installed you may visit the Citrix Xen web site and get a free XenServer here: http://www.citrix.com/lang/English/lp/lp_1688615.asp . As of February 2012 there is even a “Free edition” and Installation is rather straightforward and well documented.

Once up and running, the Citrix XEN Server image available from login.barracuda.com can be deployed and set up the same way as VM Ware images that have been available for download since firmware release 4.2.18. For details please see the “Barracuda NG Firewall Virtual Appliance Quick Start Guide” on www.barracuda.com/doc . 60 days evaluation licenses for virtual Barracuda NG Firewall as well as virtual Barracuda NG Control Center are available from www.barracuda.com/virtualization .

Posted in Barracuda NG Firewall, Uncategorized | No Comments »

Cloud-based Web security with the Barracuda NG Firewall

Tuesday, February 14th, 2012

Posted by: Kaivan Jesung, product manager

I am pleased to announce the integration of two of our leading solutions, the Barracuda NG Firewall and Barracuda Web Security Flex.

The Barracuda NG Firewall extends the traditional Firewall concept by adding Layer 7 application control, user identity, IDS/IPS, WAN optimization and network access control enforcement. Many customers also want Web content security in the mix for a unified security posture at the network gateway. The traditional approach has been to provide all this functionality in a “box” relying on network accelerators and ASICs to meet performance demands. While this may simplify things on the surface, Web content filtering and reporting are compute heavy operations that could adversely impact the performance of the Firewall.

Barracuda Networks has the perfect solution for this with Barracuda Web Security Flex, a cloud-based Web filtering and security service that provides policy and enforcement tools to protect users from Internet threats. By integrating the Barracuda NG Firewall with Barracuda Web Security Flex, customers get the best of both worlds. They can use lightweight on-premises hardware for core network security functions and leverage the cloud for more resource intensive Web content security functions. This ensures up-to-date security against the latest threats while optimizing the on-premises footprint and upgrade cycles required.

With this, organizations can:

· Simplify capacity planning – Organizations are not so rigidly bound to the compute cycles available on the on-premises firewall as the cloud will automatically scale-up or scale-down depending on the number of users that need to be filtered without impacting on-premises infrastructure.

· Maximize security across all locations – Organizations can right-size their on-premises firewalls while still providing advanced malware scanning, content filtering and centralized reporting to branch office locations.

· Extend Web Security to off-network machines – The Barracuda Web Security Agent is now available to Barracuda NG Firewall customers, extending Web filtering to remote off-network machines. Barracuda Networks is the first and only next-generation firewall vendor to provide comprehensive Web security and policy enforcement to remote users, regardless of location or device.

· Centralize Policy Management – Barracuda Web Security Flex provides a simple cloud-based policy management interface that is seamlessly integrated with the Barracuda NG Control Center. This provides centralized management of Firewall rules and Web usage policies across multiple locations.

This integrated solution is the first of its kind that enables enterprises to provide maximum protection both on-and-off network, while offloading security and reporting functions to the cloud. A number of our customers are benefiting from this unique approach and I am very excited by the traction we are seeing. Learn more about the Barracuda NG Firewall at http://www.barracuda.com/ng and Barracuda Web Security Flex at http://www.barracuda.com/flex or contact one of our product specialists at +1 408 342 5400.

Posted in Barracuda NG Firewall, Barracuda Web Security Flex | No Comments »

At Barracuda Networks, 2012 is the Year of the School

Friday, February 10th, 2012

by Sanjay Ramnath, Product Manager

K-12 schools, districts, and agencies simply can’t afford not to make sure that their networks, data, and users are totally secure—especially with vulnerable students accessing those networks every day. The dangers are too great to take any chances. And with mobile devices and social-media usage extending the threat landscape in new directions, yesterday’s solutions simply aren’t good enough.

That’s why 2012 will see Barracuda Networks reaching out to K-12 organizations in North America—including public and private schools, school districts, and county and state education agencies—to let them know that effective, affordable, easy-to-manage security solutions are out there, optimized just for them.

To learn more about how Barracuda solutions address the unique network security challenges facing K-12 organizations, please download this informative white paper, entitled “Dynamic Content Security for K-12 Organizations.”

The Barracuda Advantage

“Dynamic Content Security” is the name for a more holistic, integrated approach to network security that delivers:

Improved network performance
Dramatic cost savings—both long- and short-term
Total content security that protects every user—including mobile and off-network users
Fine-grained controls to optimize capacity and access
Simple, centralized control panel to make network management a breeze (plus award-winning customer and technical support for when it’s not)
Comprehensive forensic reporting to optimize resources and budgets, identify bandwidth-hogging users and apps, demonstrate regulatory compliance, and manage civil or criminal liability
Multiple deployment options—including on-site appliances, virtual appliances, cloud-based services, or a combination—to ensure a solution that fits your needs, capabilities, and budget

Promotional Payment Terms for K-12 Customers

We understand the intense budget pressures affecting schools, districts, and agencies today. That’s why we created the K-12 Budget Alignment Program . This limited-time promotion allows qualified North American K-12 customers to postpone paying for their Barracuda security solutions until July 31, 2012—long enough to take advantage of new-fiscal-year budget allocations.

With the K-12 Budget Alignment Program 2012, security and compliance don’t have to wait; but paying for them can.

And there’s more, K-12 organizations may also qualify for a significant discount off the retail list price of selected Barracuda solutions. To learn more, contact Barracuda today at 1-888-ANTI-SPAM (1-888-268-4772).

Managing the Transformation in Education

K-12 education is changing, and technology is driving that change. The benefits of these changes are immense. But without a new approach to security, the threats they bring could easily overwhelm the advantages.

At Barracuda, we’re committed to helping K-12 organizations use Dynamic Content Security to manage that transformation safely, securely, simply, and affordably. With Barracuda solutions in place, schools can rest assured that their user community is protected; that network management will continue to be streamlined and simple; and that their IT costs will be kept as low as possible well into the future.

Posted in Barracuda Backup Service, Barracuda Email Security Service, Barracuda Link Balancer, Barracuda Load Balancer, Barracuda Message Archiver, Barracuda NG Firewall, Barracuda SSL VPN, Barracuda Spam & Virus Firewall, Barracuda Vx, Barracuda Web Application Firewall, Barracuda Web Filter, Barracuda Web Security Flex, Hybrid protection, Social Networking, Uncategorized | No Comments »

Introducing the Barracuda NG VPN Client 3.0 For Mac OS

Wednesday, February 1st, 2012

Posted by: Mark Shanley, Product Manager

We are proud to announce the new version of the Barracuda NG VPN Client for the Macintosh OS. This has just been released and can be download from the Barracuda Customer Portal.

The Barracuda NG VPN Client 3.0 is a full featured VPN client and is compatible with any version of Mac OSX 10.5 or later including, the newest and popular, Lion.

Mac OS VPN user interface

With Version 3.0 we have introduced a new UI that provides intelligent and useful information such as complete connection status and messages. Also, users will be able to maintain multiple profiles and license files.

3.0 supports a variety of encryption methods such as AES128, AES256, CAST, Blowfish, 3DES and DES. Supported authentication methods include: Public Key (License File), X.509 Certificate, X.509 Certificate + Username/Password and Username/password. With supported proxy types including HTTP, SOCKS4 and SOCKS5. The 3.0 client supports TCP, UDP and Hybrid tunnel methods as well as MD5 and SHA Tunnel Encryption methods.

For more detailed information please look at the Barracuda NG VPN Client 3.0 for MacOS Administrators Guide.

Tags: authentication, encryption, Mac, VPN
Posted in Barracuda NG Firewall | No Comments »

Introducing Barracuda NG Firewall 5.2.2

Thursday, December 22nd, 2011

Thursday, December 22th, 2011

Posted by: Oliver Braekow, Product Manager

We just released new firmware version 5.2.2 Barracuda NG Firewall for download from the Barracuda Customer Portal.

This last update in 2011 includes the following highlights:

IPS improvements with respect to evasion and obfuscation techniques
Integration to Barracuda Web Security Flex
VPN improvements for iOS devices.
Usability improvements in the area of web filter configuration, networking and bridging.
Substantially increased proxy performance via CPU multicore support for the proxy module.
Visualization of security subscription status.

Let’s have a look at some details:

IPS Improvements:

The Barracuda IPS Engine is now able to detect and block IPS evasion techniques based on RPC fragmentation and HTML obfuscation.

For RPC fragmentation, both ONC-RPC (Sun) and DCE-RPC (Microsoft) allow the sender to send fragmented requests. An attacker could transmit the BIND followed by a single request fragmented over a hundred actual requests with small fragments of the malicious payload. At the same time, an attacker could transmit both, the BIND and the request fragments, in one large TCP segment, thus circumventing any signatures which are using simple size checks.

To mitigate threats trying to enter via HTML obfuscation the Barracuda IPS engine is now able to detect and block malicious HTML documents even in cases where attackers use advanced evasion techniques such HTML character encoding (UTF-16, UTF-32, etc.),chunking or compression (e.g. GZIP).

Barracuda Web Security Flex:

With Barracuda NG Firewall firmware release 5.2.2, the HTTP Proxy service can now easily be configured to use the Barracuda Web Security Flex™ for malware protection and web filter functions. Barracuda Web Security Flex™ is a cloud-based web filtering and security service that quickly gives administrators all the information and policy enforcement tools needed to isolate users from Internet threats, conserve network bandwidth and filter content for compliance and productivity. For more details on Barracuda Web Security Flex™ please see http://www.barracuda.com/flex.

VPN improvements for iOS devices:

The Client-to-Site VPN with L2TP/IPSec and PPTP was improved to respect group memberships and not only user names. This will allow customers to allow remote VPN access for popular handheld devices based on the iOS operating system that also support L2TP/PPTP and at the same time to restrict access based on group membership.

When connecting to the Barracuda NG Firewall via an iOS handheld device using L2TP, a connection when traversing a NAT device could not be established. Firmware 5.2.2 fixes this incompatibility issue with iOS handheld devices.

As always please make sure to check out the release notes document for complete details.

Posted in Barracuda NG Firewall, Uncategorized | No Comments »

Introducing the Barracuda NG Network Access Client 3.0 –Network Access Control at its Finest

Wednesday, December 7th, 2011

Posted by: Markus Lang, Product Manager and Thomas Unterleitner, Unit Manager Endpoint/Client Development

We are proud to announce the new version of the Barracuda NG Network Access Client which has just been released and made available for download from the Barracuda Customer Portal.

Before exploring the major release highlights let’s have a brief look on the concept of Network Access Control: Effective endpoint security today extends far beyond historical personal firewall and antivirus concepts. It still means protection of an endpoint against network threats using a host firewall and malware detection software, but extends the protection concept to a broader enforcement and validation of security policies that are specific to the identity of the device, the user and its current state. In addition, a powerful endpoint security concept also needs to necessitate full integration into an accompanying network access control framework. Our approach caters to all of these needs.

In a nutshell, the Barracuda NG Network Access Client can be used to implement an endpoint security policy on Windows based endpoints within a corporate network. In this context, the Barracuda NG Network Access Client provides a managed personal firewall solution with periodic health assessments. Both, the outcome of the assessment as well as the identity of the machine and/or current user, will influence the policy applicable to the endpoint. Enforcement of the policy is provided by the software installed on the endpoint itself and with regard to enforcement outside the local collision domain by Barracuda NG Firewalls. The latter may interpret the access policy attribute assigned to the endpoint within their rule sets, thus providing an intelligent way of enforcing network access control policies based on date and time, identity, and health state and type of network access.

Even though the Barracuda NG Network Access Client 3.0 delivers many new hot features (for a complete list please refer to the Release Notes available here), I would like to emphasize on my personal favorite:

IPv6 Router Advertisement Guard: Besides providing full IPv6 support for the personal Firewall, the new version 3.0 also introduces the IPv6 Router Advertisement Guard, which keeps track of IPv6 Router Advertisement (RA) messages by inspecting the RA packets conforming to IETF RFC 6105. Router Advertisement (RA) is a feature of the IPv6 Neighbor Discovery Protocol (NDP), which replaces IPv4’s Address Resolution protocol (ARP). RA helps network nodes determine information about their LAN, such as the network prefix list, the default routers list, the default gateway, and other information that can help them communicate. So far so good, now here comes the tricky part: Given the purpose and abilities of RA, harmful RA messages could become a security treat to a network node, to a LAN or at least to performance and bandwidth. Similar to ARP storming, which is a common IPv4 Denial of Service (Dos) attack, it is also possible to use RA messages for DoS attacks on the network. Furthermore, IPv6 nodes are capable of having a stateless address auto configuration mode, in which they listen to RA messages to automatically configure themselves. A local attacker could send malicious RA messages to divert traffic to a nonexistent address, thus black holing the victim’s traffic, or simply carrying out a man-in-the-middle-attack. The RA Guard tracks all RA messages by reading the Source Link Layer Address as well as the Prefix Information (including lifetimes) from a RA packet. The RA Guard starts to act as soon as a specific network prefix is detected for the second time. The first time a prefix is detected, it is always allowed to pass. This way, it is ensured that also with a fully configured RA Guard with company prefixes it’s possible to establish a connection to an available network e.g. in a hotel. The detected RA data is stored in a list and compared to prefixes configured in the Firewall ruleset.

Note: For a more in detail explanation of the RA Guard please have a look in the Barracuda NG Network Access Client 3.0 Admin Guide available here.

Posted in Barracuda NG Firewall | No Comments »

Introducing Two Factor Authentication Support with SMS Passcode

Friday, November 18th, 2011

Posted by: Mark Shanley, product manager

The Barracuda NG Firewall now supports SMS Passcode’s advanced two-factor authentication for the Barracuda NG Firewall Network Access Client VPN authentication feature set. Recent high profile exploits have displayed a weakness in more traditional based authentication methods such as one-time-password tokens.

A brief history will make today’s needs completely clear:
In the early days of the Internet a username and password were enough. Hackers would often use “Brute force methods” to gain access and many passwords could be guessed or calculated using password generators. Later, as computer viruses evolved along with malware or Trojans, key loggers became popular with hackers. A key logger runs in a computers background service unknown to the user and would capture all the users’ key strokes, ultimately sending that information to the hacker.

Today, in a far more advanced threatscape, relying solely on password based authentication is just not enough for many organizations. Small, medium and enterprise companies all have similar security needs including increased security, an affordable infrastructure, fault tolerance and management.

• Increased Security to counter the constantly evolving attacks that are carried out daily on the Internet, compromising a company’s security.
• An affordable infrastructure requires a product that can integrate easily into the current network.
• A Fault Tolerance system helps maintain real-time delivery of an authentication code. Other requirements include A redundancy and the ability to support multiple devices.
• Management means that a robust system that can be integrated with an existing user management infrastructure.

Barracuda Networks has achieved this by supporting the mobile scheme of SMS Passcode. The Barracuda NG Firewall is the gateway to a company’s network and an appliance that is relied upon by a company’s most senior management to protect its assets. The Barracuda NG Firewall interacts with many devices to provide remote access, a must-have in today’s workforce. The Barracuda NG Firewall has worked well with company’s internal user management systems in the past; however, we are happy to announce an added security measure utilizing a new level of challenge and session based login. This includes:

• A more secure login process that is tied to and generated based upon a successful user challenge validation (ID and password match) making it useful only to that specific login. The one time passcode is then sent to a user’s cellular telephone, or an e-mail when phone service is not available.
• There is also easy one-click integration with Active Directory, a widely utilized user control database amongst today’s companies. Also there is a service in the cloud option.
• Lower cost than more traditional options

Barracuda Networks and SMS Passcode share a common view of providing products that are reliable, easy to use, with a low cost of ownership and provide superior security features that protect the modern, global businesses against future world attacks.

You can find a quick how it works video here

For more information on SMS Passcode click here

Posted in Barracuda NG Firewall, Uncategorized | No Comments »

Barracuda NG Firewall firmware release 5.2.1 preinstalled on new appliances

Tuesday, September 27th, 2011

Posted by: Oliver Braekow, product manager

We released the Barracuda NG Firewall firmware release 5.2.1 to our download servers. Customers with current Energize Update subscriptions can now download update packages and updated Vx images from the customer portal. Newly shipped Barracuda NG Firewall units will come preinstalled with this firmware release and all applicable hotfixes starting September 30th 2011. Firmware 5.2.1 is a worthwhile upgrade for everybody to enjoy the following new key features:

1.) Support for NG Earth 2.0
Firmware release version 5.2.1 introduces support for the brand-new VPN tunnel visualization application, Barracuda NG Earth 2.0. Barracuda NG Earth 2.0 is able to display a lot more useful information, such as firmware version, local time, system status, etc., from all deployed Barracuda NG Firewall units as well as site-to-site tunnels between them. The handling has been improved by adding various existing and new settings to the menu bar. Furthermore, the resource consumption and system requirements have been heavily improved for Barracuda NG Earth 2.0 so that it can now even be used on standard mini (internet) notebooks. The new application is also included on the USB flash drive shipped with every Barracuda NG Firewall unit and Barracuda NG Control Center appliance. Please note that NG Earth requires Barracuda NG Firewall Control Center C610, VC610 or VC820. NG Earth is available for download from https://login.barracuda.com.

2.) Barracuda DC Agent
The new Barracuda DC Agent 2.0 enables transparent user authentication in addition to the existing captive portal. By installing the Barracuda DC Agent software on either the same machine as the Windows domain controller or at least in the same subnet, Barracuda NG Firewall can monitor the Windows domain controller’s access log to automatically detect when users log-in to their Windows domains. This provides true single sign-on capability to Barracuda NG Firewall by avoiding the need for users to authenticate to the Barracuda NG Firewall directly or to install an authentication helper client on all PCs in the network.

3.) Barracuda Activation via Barracuda NG Control Center
Firmware release version 5.2.1 includes support for central activation of Barracuda NG Firewall units (Vx virtual as well as hardware units) from within a Barracuda NG Control Center.
Barracuda NG Firewall units may, for rapid deployment purposes, even be activated if not physically present and visible to the NG Control Center during the activation process. The Barracuda NG Control Center’s Control section now includes the Barracuda Activation button.

4.) IPS Evasion techniques
With firmware release version 5.2.1 the following four anti-evasion techniques have been added to prevent attackers bypassing detection by the IPS engine: TCP Stream Reassembly, URL Obfuscation, FTP Evasion, TCP Split Handshake. For details please see the Release and Migration notes or the Administration Guidance document.

5.) Revision Control for standalone units
Firmware release version 5.2.1 includes a revision control system (RCS) feature which is very similar to what was, up to now, only available for Barracuda NG Control Center. Now, it is available on every Barracuda NG Firewall unit even including legacy units. RCS allows administrators to track and report on changes to all configuration nodes and, if needed, to roll back to a previous version quickly, thereby providing answers to questions like what was changed, by whom, when and from where.

Posted in Barracuda NG Firewall, Uncategorized | No Comments »

Barracuda Networks Product Blog