Barracuda NGFW Integration Guide🔗
Barracuda next-generation firewalls (NGFW) must be configured to send logs via syslog to the Taegis™ XDR Collector.
Connectivity Requirements🔗
| Source | Destination | Port/Protocol |
|---|---|---|
| Barracuda NGFW | XDR Collector (mgmt IP) | UDP/514 |
Data Provided from Integrations🔗
| Normalized Data | Out-of-the-Box Detections | Vendor-Specific Detections | |
|---|---|---|---|
| Barracuda Firewall | Netflow |
Note
XDR detectors are not guaranteed to be triggered, even if a data source's logs are normalized to a schema associated with a given detector. However, you can create Custom Alert Rules to generate alerts based on normalized data from a data source.
Configuration Instructions🔗
To configure the Barracuda NGFW syslog, follow the guide provided by Barracuda. Ensure you complete the following fields with the correct values:
- IP Address — The IP address of the XDR Collector
- Port — 514