Security, access and reliability engineered for the cloud
Barracuda’s Cloud-Generation Firewall is the first of its kind to combine full next-generation security with the connectivity optimisation of SD-WAN. Your cloud-connected networks are secured – whatever your infrastructure looks like. What’s more, pricing is consumption-based to save you money on infrastructure.

Cloud-Generation Firewalls natively integrate with major cloud platforms. Leverage automation, template deployments, cloud network constructs, and auto-scaling. Deploy in clusters for micro-segmented and high availability. Built-in API interfaces means easy integration with Puppet or Splunk for end-to-end automation of workflows.
Advanced Threat Protection – for network threats & vulnerabilities
Businesses face growing and more advanced network threats from ransomware, zero-hour threats, and DDoS attacks. Of course, these require similarly advanced defence solutions. Built for persistent attacks that avoid traditional security methods. Advanced Threat Protection gives you the tools, capability, and visibility you need.
- Advanced Threat Protection analyses all inbound files before reaching your network, sandboxing those requiring further assessment.
- Multi-layered protection built to stop zero-day threats and secure vulnerabilities against SQL injections, cross-site scripting, trojans, viruses, worms, spyware, plus much more.
- Built on real-time intelligence gathered from millions of sources across all threat vectors, ensuring you have the very latest protection.
Securing your connectivity & remote access
Today’s organisations are growing more dependent on advanced dispersed networks. Naturally, this asks difficult questions of your branch connectivity. Wherever your workloads reside, the Cloud-Generation Firewall ensures your security and your reliability. Giving you complete control over your traffic, protecting your data and users in all your environments.
- Optimises distributed networks, scaling easily across any number of locations, platforms and applications with state-of-the-art SD-WAN.
- Incorporates both site-to-site and client-to-site VPN capabilities, ensuring remote workers can easily and securely access network resources.
- Dynamic bandwidth and latency protection ensures you always connect to the most suitable uplink per application.
Analytics & reporting for evolving attacks
Staying secure and seamlessly connected means continuous assessment of security measures and WAN performance. The volume, variety and velocity of data often needs manual processing – an approach that’s both error-prone and costly. Cloud-Generation Firewalls solve these challenges with real-time reporting and visibility.
- Firewall Insights (included with the CloudGen Firewall) automates the gathering, consolidating, and analysing of data. From all firewalls deployed across your organisational network.
- View live and recent traffic on your corporate network. Includes filtering and drilling down options to identify bandwidth priorities and acceptable use violations.
- Centralised management to monitor your entire network, on-premises and in the cloud. Scalable to your applications and workloads, while freeing up your time.
FAQs
The term “Next-Generation Firewall” (NGFW) was first coined by Gartner Research, and it refers to the third generation of network firewall technology. These firewalls build on the previous generation of firewalls by tightly integrating additional capabilities, such as in-line deep packet inspection (DPI), intrusion prevention (IPS), and application-level traffic inspection.
Cloud Firewalls are software-based, cloud deployed network devices, built to stop or mitigate unwanted access to private networks. As a new technology, they are designed for modern business needs, and sit within online application environments.
Enterprises have shifted away from running applications from on-prem servers – instead opting to use virtual machines and containers. This has led to rapid growth in endpoints, all of which need to be protected. This constant flux of endpoint exposure has necessitated a shift away from traditional network security solutions.
A VPN, or Virtual Private Network, allows you to create a secure connection to another network over the Internet. VPNs forward all your personal traffic through their network, which is where the benefits all come from.
An SD-WAN (Software-Defined Wide Area Network) is an application of software-defined networking (SDN) technology that provides software-based control over wide area network connections. SD-WAN technology simplifies the management and operation of a WAN by separating the networking hardware from its control mechanism. It essentially “virtualises” the WAN so that you can configure the network and route traffic without dealing with proprietary hardware connections.