The Barracuda Networks set of APIs provides for remote administration and configuration of the Barracuda Email Security Gateway. To use this feature, please see Cloud Protection Layer for details on configuration. This feature requires using Barracuda Cloud Control and validating your domain ownership with the cloud service. Using the Cloud Protection Layer (CPL) feature means that all email going into your organization is pre-filtered for spam, viruses, phishing and other malware threats before it reaches your network. Setting Use HTTPS Links in Emails to Yes on the ADVANCED > Secure Administration page ensures that these emails sent from the Barracuda Email Security Gateway contain only HTTPS links. If Per-User quarantine (as opposed to Global) is configured on the BASIC > Quarantine page, Barracuda Networks recommends securing hyperlinks in quarantine correspondence emails that are sent from the Barracuda Email Security Gateway to users and administrators.
Barracuda mail archiver locked out how to#
Trusted certificate - a certificate signed by a trusted certificate authority (CA)Ĭonfiguring SSL certificates is described in How to Enable SSL for Administrators and Users as well as in the online help of the ADVANCED > Secure Administration page.There are three types of SSL certificates to choose from:
SSL CertificatesĪs described above, Barracuda Networks stronglyrecommends limiting user interface access to HTTPS to provide the best security, and can be configured on the ADVANCED > Secure Administration page along with the use of SSL certificates. See Security for Integrating with Other Systems - Best Practices for more information. This integration strategy is part of an overall security policy. Barracuda Networks recommends creating separate service accounts for these integration points, rather than personal accounts, and then using the principle of least privilege. The Barracuda Email Security Gateway integrates with other systems and services in your environment, like your LDAP server and mail servers. Integration with External Systems and Services - Security Considerations If per-user quarantine is enabled as well as HTTPS, users will be redirected to HTTPS access if they are trying to access their quarantine inbox. To configure SSL-only access to the web interface, see How to Enable SSL for Administrators and Users. Barracuda Networks recommends using port 443 because it is a standard HTTPS/SSL port that is used for secure web browser communication, and the identity of the remotely connected server can be verified with significant confidence.
If no IP address is specified in this field, then all systems are granted access with the correct administrator password.īarracuda Networks strongly recommends securing external access to the Barracuda Email Security Gateway by using the Web Interface HTTPS/SSL Port setting on the ADVANCED > Secure Administration page. From that page you can further limit access to the web interface by IP address with the Administrator/IP Range setting. Barracuda Networks recommends using the non-standard port 8000 for internal access to the web interface, which is configured on the BASIC > Administration page. To secure your Barracuda Email Security Gateway on your network, begin by locking down the user interface ports. However, for maximum security, Barracuda Networks recommends deploying the Barracuda Email Security Gateway behind a corporate firewall as described in Deployment Behind the Corporate Firewall. You can deploy your Barracuda Email Security Gateway behind your corporate firewall or in front of your corporate firewall in the DMZ.
0 kommentar(er)
