Barracuda Email Security Gateway

Version: Barracuda Email Security Gateway v6.0 and above.

The Barracuda Email Security Gateway is an integrated hardware and software solution designed to protect the email server from spam, virus, spoofing, phishing, and spyware attacks. Outbound filtering and encryption options also prevent Data Leakage Prevention (DLP). The optional cloud protection layer (CPL) shields email servers from inbound malware and DoS attacks while filtering out normal spam before it ever touches the network’s perimeter.

The Netsurion Open XDR platform facilitates monitoring events retrieved from Barracuda Email Security Gateway. The alerts, reports, dashboard, and saved search in the Netsurion Open XDR platform benefit in detecting any suspicious activities.

The following are the key Data Source Integrations available in the Netsurion Open XDR platform.

Alerts

TypeNameDescription
SecurityBarracuda ESG – Malicious file detected in emailThis alert is generated whenever any virus is detected in the email attachment.

Reports

TypeNameDescription
SecurityBarracuda ESG – Email Traffic detailsThe report offers comprehensive data regarding inbound, outbound, email scanning, and email statistics. It includes details such as the sender’s email address, recipient email, hostname, source IP address, action taken against malicious activities, and email subject. This report simplifies the process of analyzing sensitive audit data and answering questions related to the “who, what, when, where, and how” of specific scenarios. It helps meet the audit requirements for various industries’ regulations.
SecurityBarracuda ESG – Virus detection in emailsThis report provides the information about any virus detected in the email attachment, including the details of sender and recipient address.

Dashboards

TypeNameDescription
SecurityBarracuda ESG – Action taken on inbound emailsThis dashlet displays the actions taken on inbound emails with their sender and recipient address.
SecurityBarracuda ESG – Action taken on outbound emailsThis dashlet displays the actions taken on outbound emails with their IP address.
SecurityBarracuda ESG – Emails blocked by geolocationThis dashlet displays the emails blocked by geolocation.
SecurityBarracuda ESG – Virus detection by sender addressThis dashlet displays virus detected by sender address.
SecurityBarracuda ESG – Spam emails detailThis dashlet displays all the spam emails with their sender and recipient address.

Saved Search

TypeNameDescription
SecurityBarracuda ESG – Email Traffic detailsThis saved search contains in-depth data about inbound and outbound emails, including email scans and statistics. The data provided includes the sender’s email address, recipient email, hostname, source IP address, any action taken against malicious activity, and email subject. This saved search simplifies the process of sorting through sensitive audit data to identify specific scenarios and answer questions related to the “who, what, when, where, and how” of such events. It helps satisfy audit requirements for various industry regulatory standards.
SecurityBarracuda ESG – Virus detection in the emailThis saved search provides the information about any virus detected in the email attachment, also provides the details of sender and recipient address.

Documentation

The configuration details are consistent with the Netsurion Open XDR 9.3 and later, and Barracuda Email Security Gateway.

Download Integration Guide for configuration instructions and more information.