Security

Barracuda Spam and Virus Firewall

wsothard
Engager

I am having issues pulling data from our Barracuda Spam and Virus firewall.

It is a: Model 600, running older firmware: v3.5.12.025

Any idea on how to get data into the Splunk system?

0 Karma
1 Solution

joshd
Builder

What type of issues are you running into? Depending on your network config, you should be able to enable syslog logging on the barracuda device and point it directly to the Splunk server, and on the Splunk server make sure you've enabled a UDP data input for port 514 (default syslog port).

View solution in original post

wsothard
Engager

That got it... I was setting it up incorrectly. Thank you for the help as I just got Splunk yesterday and have never worked with it before.

0 Karma

joshd
Builder

Glad to hear it's working, if you need any help with field extractions, etc... let me know. I've worked with various Barracuda devices before.

0 Karma

joshd
Builder

What type of issues are you running into? Depending on your network config, you should be able to enable syslog logging on the barracuda device and point it directly to the Splunk server, and on the Splunk server make sure you've enabled a UDP data input for port 514 (default syslog port).

Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...