🌙

Subscribe to the Taegis™ XDR Documentation RSS Feed at .

Learn more about RSS readers or RSS browser extensions.

Barracuda WAF Integration Guide

integrations network barracuda


You must add an export log server to your Barracuda Web Application Firewall to export logs to the Taegis™ XDR Collector.

The information below provides the necessary actions and steps to configure a Sysolg export log server on your Barracuda WAF.

Connectivity Requirements

Source Destination Port/Protocol
Barracuda WAF XDR Collector (mgmt IP) TCP/601

Data Provided from Integration

  Auth CloudAudit DNS HTTP Management Netflow NIDS Process Thirdparty
Barracuda WAF       D          

Y = Normalized | D = Out-of-the-Box Detections | V = Vendor-Specific Detections

Note

XDR detectors are not guaranteed to be triggered, even if a data source's logs are normalized to a schema associated with a given detector. However, you can create Custom Alert Rules to generate alerts based on normalized data from a data source.

Configuration Instructions

To configure Barracuda WAF logging, follow the Steps to Add a Syslog Server section of the Barracuda WAF documentation. Consider the following requirements when completing the configuration steps:

Important

Currently only the default log format is supported.

 

On this page: