Barracuda Email Security Gateway
Cloud-connected email security appliance.
Frequently Asked Questions
How does the Barracuda Email Security Gateway protect against email threats?
The Barracuda Email Security Gateway, an integrated physical appliance and software solution, uses a multilayered approach to provide the most comprehensive email protection available against spam, viruses, spoofing, phishing and spyware attacks. An added benefit of the Barracuda Email Security Gateway is the optimized processing of each email to maximize performance and capability to filter millions of messages per day.
Behind the industry-leading initiatives of Predictive Sender Profiling and Barracuda Real-Time Protection are 12 explicit defense layers including: Denial of Service and Security Protection, Rate Controls, IP Reputation Analysis, Sender Authentication, Recipient Verification, Virus Protection, Policy (user-specified rules), Fingerprint Analysis, Intent Analysis, Image Analysis, Bayesian Analysis, and a Spam Rules Scoring engine.
How is email filtered?
Deployed at the network perimeter, all incoming email must pass through all 12 defense layers of the Barracuda Email Security Gateway before any of it can reach the intended recipients. The defense layers are grouped into two main classes: connection management, which involves dropping incoming mail connections before receiving messages, and mail scanning, which analyzes messages upon receipt. During the filtering process, emails are checked for new and familiar spammer attacks, viruses, and customized administrator policy violations. Based on administrator and user preferences, spam can be tagged, quarantined or blocked.
Why tag email? What happens to tagged emails?
Tagging email benefits organizations by easily identifying messages that meet set criteria. Tagged emails are delivered to the recipient with a customizable label, such as [BULK], that is added to the subject of the message.
Why quarantine email? What happens to quarantined email?
Quarantining emails is a safeguard that allows for examination of questionable messages prior to accepting or rejecting; typically, quarantined email does turn out to be spam. An administrator can choose two types of email quarantine: global or per user quarantine.
When configured for global quarantine, the Barracuda Email Security Gateway routes all quarantined email to a mailbox specified by the administrator. When configured for per user quarantine, the Barracuda Email Security Gateway stores the email locally and notifies users periodically of their quarantined email. Users can choose to delete quarantined email, forward it to their own mailboxes or add the sender address to an allow list to prevent future email from being quarantined. Per user quarantine is available with the Barracuda Email Security Gateway 300, 400, 600, 800 and 900 models.
What are some of the underlying technologies used in the Barracuda Email Security Gateway?
The Barracuda Email Security Gateway uses a combination of proprietary and open source software. The Barracuda Email Security Gateway operating system is based on a hardened, stable Linux kernel that has undergone strict scrutiny by top security researchers. The robust MTA is capable of handling a high number of SMTP connections and mail delivery volumes. Starting with firmware release 3.5, the Barracuda Email Security Gateway MTA has a built-in journaling function that can be used in conjunction with the Barracuda Message Archiver.
If I am using Microsoft Exchange, how will the Barracuda Email Security Gateway protect against “dictionary” attacks?
The Microsoft Exchange Accelerator, available on Barracuda Email Security Gateway 300 and higher, uses the Lightweight Directory Access Protocol (LDAP) built into Exchange to verify recipients before delivering messages to the Microsoft Exchange Server.
What new technologies has the Barracuda Email Security Gateway added to combat the latest spam campaigns?
Barracuda Networks has announced several initiatives against spam:
- Multi-Pass Optical Character Recognition Engine: Image spam generally embeds text within images with the intent of hiding content and bypassing the text rules processing layers of spam filters. & With Barracuda Networks’ industry-leading multi-pass OCR engine, Barracuda Email Security Gateways render the spammers’ tricks to hide text behind color or blurred images ineffective.
- Predictive Sender Profiling: Barracuda Networks’ industry-leading Predictive Sender Profiling probes deeper into sent email and digs into the campaign itself to identify anomalous sender activity, allowing Barracuda Networks to effectively block spam typically unstoppable by traditional reputation analysis.
- Barracuda Real-Time Protection: Barracuda Real-Time Protection uses an advanced set of technologies to immediately block the latest virus, spyware and other malware attacks as they emerge. Leveraging the Barracuda Email Security Gateways large and diverse customer base, Barracuda Networks leads in industry in detecting early trends and responding to email-borne threats.
How does the Barracuda Email Security Gateway protect against virus threats?
The Barracuda Email Security Gateway provides comprehensive protection against virus threats through three powerful layers. The first layer consists of a well-respected open source virus scanning engine. The second layer is a proprietary virus engine maintained by Barracuda Central, an advanced 24/7 security operations center that works to continuously monitor and block the latest Internet threats. The third layer is Barracuda Real-Time Protection, a set of advanced technologies that enable Barracuda Email Security Gateways to immediately block the latest virus, spyware and other malware attacks as they emerge without having to wait for a signature to be downloaded onto the Barracuda Email Security Gateway.
How does the Barracuda Email Security Gateway block real-time threats?
Barracuda Central engineers diligently work 24x7 monitoring spam and virus threats around the world. Since response times are crucial with real-time threats, when one is detected the Barracuda Email Security Gateway uses Barracuda Real-Time Protection to mitigate these threats as they emerge without waiting for new updates.
How much time will I spend installing and maintaining the Barracuda Email Security Gateway?
The Barracuda Email Security Gateway is designed as an easy-to-install appliance requiring minimal administrative overhead. Without any tuning, the Barracuda Email Security Gateway offers a 95 percent spam accuracy rate with a 0.01 percent false positive rate. Taking into account the six defense layers automatically tuned by Energize Updates, the Barracuda Email Security Gateway is easily kept up-to-date for ongoing spam accuracy.
Will I receive a high number of false positives using a Barracuda Email Security Gateway?
With no tuning, the Barracuda Email Security Gateway is set to minimize false positives, typically at 0.01 percent or less – one of the lowest false positive ratings in the industry. As with any solution that allows for user customization, each customer’s false positive return will vary depending on how the administrator tunes the unit (i.e. a stricter spam score setting may result in more false positives).
What does Energize Updates include for the Barracuda Email Security Gateway?
The Barracuda Energize Updates subscription provides the latest spam and virus definition updates that block new campaigns before they become an outbreak. Barracuda Central engineers constantly update spam and virus definitions and are able to remotely tune six of the 12 defense layers, thereby minimizing administration time. Energize Updates also gives you access to technical support, new firmware releases and the opportunity to participate in the Barracuda Early Release Firmware program.
Does the Barracuda Email Security Gateway offer per user policies?
Most per user policy settings are available in Barracuda Email Security Gateway 300 and higher. Per user policies empower users with the ability to set their own individual scoring policies (available on models 600 or higher), Bayesian database, allow lists and block lists.
Can the Barracuda Email Security Gateway filter outbound messages?
Yes. The Barracuda Email Security Gateway filters outbound messages for viruses and basic spam scanning policies. For advanced outbound scanning, Barracuda Networks offers the Barracuda Email Security Gateway-Outbound which includes different workflows for quarantining outbound email traffic for review by policy auditors.
How do I block or minimize the amount of invalid bounce messages?
Invalid bounce messages are non-delivery reports to forged email addresses. To block invalid bounce messages, enable the Invalid Bounce Suppression feature and relay all your outgoing email through the Barracuda Email Security Gateway.
Does the Barracuda Email Security Gateway enable administrators to block email from other countries?
Yes, the Barracuda Email Security Gateway offers different ways to block spam from other countries:
- Based on a Reverse DNS lookup, administrators block messages whose top level domain resolves to a country’s hostname
- Based on the declared character set of an email, administrators block messages that contain a specific language set.
- While it is not recommended by Barracuda Networks, administrators create custom policies to filter other patterns in the subject, header or body to block unwanted email from other countries.
How do I know which Barracuda Email Security Gateway model is best suited to my needs?
A local Barracuda Networks sales representative can evaluate your environment based on the number of active users, email traffic and desired features. As your organization expands, multiple Barracuda Email Security Gateways can be clustered to accommodate your growth.
How does the Barracuda Email Security Gateway protect organizations from spear phishing and BEC?
Spear phishing attacks are highly personalized, and typically very low volume with no malicious attachments or links inside. Because of this, they are very hard to stop with existing email security solutions. As a complement to the Barracuda Email Security Gateway, Barracuda Sentinel is the leading comprehensive AI solution for real-time spear phishing and cyber fraud defense. Delivered as a cloud service, Barracuda Sentinel combines a powerful artificial intelligence engine, domain fraud visibility using DMARC, and anti-fraud training into a comprehensive solution that protects people, businesses, and brands from spear phishing, impersonation attempts, business email compromise (BEC), and cyber fraud. Learn moreFor answers to additional questions, please contact Barracuda Networks at +1 888 268 4772