Allow HTTP/HTTPS connections to the internet. Some antivirus products use HTTP/HTTPS to download up-to-date engines and patterns.

Fig. 13–2Example configuration – Personal Firewall rule set – Access Control Service - Rules – Outgoing tab example view

Next create and edit the unrestricted rule set:

For the unrestricted rule set, the Outgoing rules allow connections to the whole internal network. Add a pass rule using "LocalIPs" as source and "10.0.0.0/8" plus "172.16.0.0/24" as destination.

Additional remote desktop connections are allowed in the "Incoming" rule set.

Fig. 13–3Example configuration – Personal Firewall rule set – Incoming tab example view

13.3 Introduce an Access Control Service Trustzone

As mentioned above, the hierarchical structure of a Barracuda NG Control Center allows introduction of Access Control Service Trustzones at different levels (Global, Range, and Cluster). Thus, a decision about the proper place for a company's trustzone is required.

174 Example Configuration

Page 176
Image 176
Barracuda Networks VERSION SP4 manual Introduce an Access Control Service Trustzone