Network Security Management for Barracuda Firewalls
Centralize and automate security policy management, deployment and monitoring for single-pane-of-glass visibility and control, including coverage for Barracuda CloudGen Firewall.

Centrally manage firewall policies.
Tufin integrates with Barracuda CloudGen Firewalls to centrally and directly manage cloud security and firewall policies. This enables network security personnel to view network segmentation policies within Tufin’s unified security policy matrix to application security and connectivity management.
With real-time visibility into access violations, Tufin accelerates connectivity troubleshooting with comprehensive path analysis across on-premises, private cloud, and public cloud firewalls on Barracuda Networks products.
Tufin provides the framework for teams to implement zero trust across identity and access management while integrating with the relevant firewalls and cloud applications.
Automate network security changes.
Tufin helps technical teams implement advanced threat protection across their network. By automating security policy optimization, risk analysis, workload deployment, and network security change management, Tufin’s functionality makes it easier than ever to ensure your organization remains compliant and secure.
API integration with the Barracuda Firewall Control Center extends your visibility into real-time traffic, detects anomalies (e.g., misconfigurations, potential threats), reduces operational complexity and cost, and easily manages network and cloud security segmentation policies on next-generation firewalls (NGFWs) available from Barracuda Networks, Inc. and other leading NGFW providers.
Simplify Segmentation.
Tufin security solutions help IT teams set and manage segmentation and micro-segmentation policies across hybrid multi-vendor environments. Tufin’s tools establish a baseline of allowed and blocked traffic between security segments using Tufin’s zone-to-zone matrix. The matrix allows users to easily compare actual network access control configurations against their desired policies in order to help clean up rule bases and remediate misconfigurations on their Barracuda CloudGen Firewalls and other web application firewalls.
You can use Tufin’s pre-built, recommended policies and templates for key compliance mandates (e.g. PCI-DSS, NERC CIP, GDPR, SOX, HIPAA, and NIST).
Uncover and fix security and compliance gaps.
Quickly analyze and investigate security and compliance gaps in your networks. With granular insight into access and security information, it’s easy for teams to spot vulnerabilities and policy violations right on Tufin’s dashboard.
This allows security administrators to create a policy exception, grant authentication, or push a modification in one place.
Eliminate Manual Firewall Auditing Tasks
Achieve continuous compliance and firewall audit readiness, while eliminating manual tasks. Tufin makes it easy to demonstrate network security compliance with standards and regulations, such as PCI DSS, HIPAA, GDPR, NERC CIP, ECB, and more across hybrid, multi-cloud environments.
Benefits of Barracuda CloudGen Firewalls
Barracuda Firewalls support a powerful SD-WAN platform that delivers next-generation security, connectivity, and automation across on-premises and cloud-based deployments. Barracuda Firewalls features:
- Next-gen security, connectivity, and automation across on-premises and cloud-based deployment
- Tight integration with Microsoft Azure vWAN for zero-touch deployment and support for Office 365 policies
- Full VPN automation
- SD-WAN-handled load balancing, fail-over, and traffic routing
- Cloud-based advanced threat protection to detect and block threats such as zero-day and ransomware attacks
- Complete set of APIs for integration with cloud generation firewalls
- SDKs for Azure, Amazon Web Services (AWS), and Google Cloud Platform
- An intrusion prevention system (IPS) that monitors traffic for malicious activity
- Built-in malware protection that scans web content, email, and file transfers with two antivirus engines
- Monitoring of SSL-encrypted web traffic
- Implement application control with stateful packet inspection capabilities

Related Resources

FAQs
APG is a powerful feature available with Tufin’s SecureTrack subscription that assesses your firewalls rule sets against historic traffic logs to determine which traffic is necessary to define a least-privilege ruleset that you can push out to the device to tighten permissiveness.
Tufin is the most extensible solution in the network security policy management market, supporting virtually any firewall vendor available, including Cisco, Palo Alto Networks, Check Point, Juniper, ManageEngine, Fortinet and many more.