Security
Highlighted

Barracuda Spam and Virus Firewall

Engager

I am having issues pulling data from our Barracuda Spam and Virus firewall.

It is a: Model 600, running older firmware: v3.5.12.025

Any idea on how to get data into the Splunk system?

0 Karma
Highlighted

Re: Barracuda Spam and Virus Firewall

SplunkTrust
SplunkTrust

What type of issues are you running into? Depending on your network config, you should be able to enable syslog logging on the barracuda device and point it directly to the Splunk server, and on the Splunk server make sure you've enabled a UDP data input for port 514 (default syslog port).

View solution in original post

Highlighted

Re: Barracuda Spam and Virus Firewall

Engager

That got it... I was setting it up incorrectly. Thank you for the help as I just got Splunk yesterday and have never worked with it before.

0 Karma
Highlighted

Re: Barracuda Spam and Virus Firewall

SplunkTrust
SplunkTrust

Glad to hear it's working, if you need any help with field extractions, etc... let me know. I've worked with various Barracuda devices before.

0 Karma