Security

Barracuda Spam and Virus Firewall

wsothard
Engager

I am having issues pulling data from our Barracuda Spam and Virus firewall.

It is a: Model 600, running older firmware: v3.5.12.025

Any idea on how to get data into the Splunk system?

0 Karma
1 Solution

joshd
Builder

What type of issues are you running into? Depending on your network config, you should be able to enable syslog logging on the barracuda device and point it directly to the Splunk server, and on the Splunk server make sure you've enabled a UDP data input for port 514 (default syslog port).

View solution in original post

wsothard
Engager

That got it... I was setting it up incorrectly. Thank you for the help as I just got Splunk yesterday and have never worked with it before.

0 Karma

joshd
Builder

Glad to hear it's working, if you need any help with field extractions, etc... let me know. I've worked with various Barracuda devices before.

0 Karma

joshd
Builder

What type of issues are you running into? Depending on your network config, you should be able to enable syslog logging on the barracuda device and point it directly to the Splunk server, and on the Splunk server make sure you've enabled a UDP data input for port 514 (default syslog port).

Get Updates on the Splunk Community!

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

Splunk is officially part of Cisco

Revolutionizing how our customers build resilience across their entire digital footprint.   Splunk ...

Splunk APM & RUM | Planned Maintenance March 26 - March 28, 2024

There will be planned maintenance for Splunk APM and RUM between March 26, 2024 and March 28, 2024 as ...