ESG200 - Barracuda Email Security Gateway Product Specialist

Barracuda Email Security Gateway

ESG200 - Product Specialist

Class Overview
• Marketplace Overview
• Features and Benefits
• Deployment Options
• Sizing and Product Selection
• Frequently Asked Questions

Marketplace Overview
Barracuda Email Security Gateway - ESG200

1
 ESG200 - Barracuda Email Security Gateway Product Specialist

Market Drivers
• Keep employees productive
• Over 90% of all email is spam
• Many filtering solutions have a high false positive rate
• Help backend server applications to work better

• Ensure business continuity

• Email spooling up to 96 hours

Operational Costs
• Reduces load on existing infrastructure
• Simple to deploy and manage
• Up and running in 15 minutes
• Very little ongoing maintenance
• Automatic definition updates

Security & Policy Enforcement

• Real-time protection from malware and viruses
• Advanced Threat Protection
• Defend against ransomware and other advanced threats

• Outbound filtering for compliance/DLP

• Powerful, flexible criteria options

• Includes outbound email encryption

• Automatically encrypts sensitive outbound messages
• Does not require software on recipient machine

2
 ESG200 - Barracuda Email Security Gateway Product Specialist

Features and Benefits

Barracuda Email Security Gateway - ESG200

Definition
• The Barracuda Email Security Gateway acts as a filter for the
mail server
• Good mail is forwarded to the mail server
• Spam does not even reach the mail server
Blocked! Spam message

Barracuda Email Security Gateway Mail Server

Ease of Use
• Simple web-based administrative interface
• Up and running in 15 minutes
• Default configuration blocks 95% of all spam

3
 ESG200 - Barracuda Email Security Gateway Product Specialist

Defense Layers
• Comprehensive Protection from Email-Based Threats
• Protects against inbound malware, spam, phishing, and Denial
of Service attacks
• Powerful, multi-method spam detection
• Leverages proprietary, open-source, and user-defined methods

Spam Checking
• Global spam protection for all domains
• Proprietary system used to determine likelihood of spam
• Fully automatic, score calculation is not user adjustable
• Multiple methods of protection including:
• Spam Scoring
• Fingerprint Analysis
• Intent Analysis
• Image Analysis
• Bayesian Analysis

Spam Checking - Scoring

• Spam Scoring Limits
• Score ranges from 0 (definitely not spam) to 9 or greater (definitely spam)
• Based on this score, one of four actions are taken:
• Block
X-Barracuda-Spam-Score: 7.85
• Quarantine Rule breakdown below
pts rule name description
---- ---------------------- --------------------------
• Tag 0.14 MISSING_MID
1.40 MISSING_DATE
Missing Message-Id: header
Missing Date: header

• Allow
0.30 TVD_RCVD_SINGLE TVD_RCVD_SINGLE
1.21 MISSING_HEADERS Missing To: header
1.50 BSF_SC0_TG076a Custom Rule TG076a
0.01 MISSING_SUBJECT Missing Subject: header

• System wide or per domain 0.00

0.50
1.28
TO_CC_NONE
BSF_SC0_SA609_FM_CB
MISSING_SUBJECT_2
No To: or Cc: header
Custom Rule SA609_FM_CB
Missing Subject: header

scoring available 1.50 BSF_SC0_TG076 Custom Rule TG076

• Inbound and outbound scoring

4
 ESG200 - Barracuda Email Security Gateway Product Specialist

Spam Checking - Fingerprint Analysis

• Default Action – Block
• Looks for known message components that have been
classified as spam
• Real-time analysis is available and
must be turned on under
BASIC > Virus Checking Known Spam
Fingerprint
Database

Spam Checking - Intent Analysis

• Checks web links, telephone numbers and email addresses
• Intent Analysis is the defense layer that catches phishing attacks
• The Barracuda Email Security Gateway
features multiple forms of
Intent Analysis: [Link]

• Intent Categorization Intent

Analysis
• Multi-Level Intent Analysis
• Real-time intent analysis

Spam Checking - Image Analysis

• Image spam represents about one third of all traffic on the
Internet
• Optical character recognition (OCR) - On by default
• Analyzes text embedded in images.
Cheap
• Image processing Viagra
• Normalizes the images prior to the OCR
OCR phase engine running Engine

• Animated GIF analysis

• Specialized algorithms for analyzing animated GIFs

5
 ESG200 - Barracuda Email Security Gateway Product Specialist

Spam Checking - Bayesian Analysis

• Linguistic algorithm that creates a language profile
• The administrator must classify message prior to use via the
message log
• 200 legitimate messages
• 200 spam messages
Bayesian
• Retraining is required every 3-6 Engine

months to ensure accuracy

• Barracuda does not recommend using Bayesian filtering in most
circumstances.

Virus Checking
• All messages processed by the Barracuda Email Security
Gateway are checked for viruses
• Detected viruses will not be quarantined or delivered to the
intended recipient - even if the message has been whitelisted
• Barracuda Real-Time Protection – Provides live updates in real
time between Barracuda Central and your ESG
• Advanced Threat Protection subscription available

Quarantine
• Inbound options for quarantine:
• Global Quarantine
• Per-User Quarantine

• Outbound Quarantine
• Admin managed
Quarantine

Outbound Inbound

Barracuda Email Security Gateway

6
 ESG200 - Barracuda Email Security Gateway Product Specialist

Inbound Quarantine Type

• Global –
• One central inbound quarantine delivery location for each domain
• Global quarantine uses fewer system resources
• Quarantined emails are not stored on the appliance

• Per-User –
• Personal quarantine inbox for inbound mail
• Quarantined emails are stored on the Barracuda Email Security Gateway
• Available on the ESG model 300+

Outbound Mail Defense

• Stops outbound spam and viruses
• Provides compliance via DLP (Data Loss Prevention)
• Allows intelligent email encryption

Barracuda Email Security Gateway Mail Server

Cloud Management
• Barracuda Cloud Control offers centralized cloud-based
management
• Manage multiple Barracuda appliances though a single web
interface
Cloud-based Management

Barracuda Email Security Gateways

7
 ESG200 - Barracuda Email Security Gateway Product Specialist

Barracuda Cloud Protection Layer

• Definitions are provided in real time by Barracuda Central
• Ensures that threats never reach the network perimeter
• Offloads CPU-intensive tasks like antivirus and DDoS filtering to
the cloud
• Email can be spooled up to 96 hours
• Requires the Barracuda Advanced Threat Protection
Subscription

Powerful Administration
• Flexible logging system
• Scheduled reporting
• Syslog and SNMP available
• Role-based administration

Deployment Options
Barracuda Email Security Gateway - ESG200

8
 ESG200 - Barracuda Email Security Gateway Product Specialist

Deployment in the DMZ

• Assign an external IP address to the Barracuda Email Security
Gateway
• MX record points to the Barracuda Email Security Gateway
DNS
[Link] IN MX [Link]
[Link] IN A [Link]

Public IP Address
Send email to user@[Link]
[Link]

Barracuda Email Security Gateway

Deployment behind a Corporate Firewall

• MX record points to the firewall’s WAN interface
• Configure SMTP Port Forwarding (TCP Port 25) on the firewall

DNS
[Link] IN MX [Link]
[Link] IN A [Link]

Public IP Address Send email to user@[Link]

[Link]

Barracuda Email Security Gateway

Clustering the Email Security Gateway

• High availability and fault tolerance
• Centralized management of policy, scalability and data redundancy
• Supported on models 400 and higher
• Must be the same platform, model and firmware.

Admin changes policy

Mail Server
Internet Policy change replicates across cluster

9
 ESG200 - Barracuda Email Security Gateway Product Specialist

Supported Platforms
• Appliance
• Virtual
• Public Cloud
• AWS
• Azure

Hardware Models

100 400 800

200 600 900

300

VX Models
• Hypervisor Support including
• VMware
• Microsoft Hyper-V
• KVM
• XenServer

10
 ESG200 - Barracuda Email Security Gateway Product Specialist

Public Cloud
• AWS and Azure
• BYOL License or Hourly / Metered
• 3 models in each cloud to choose from

Barracuda Email Security Gateway Models

Product Features

11
 ESG200 - Barracuda Email Security Gateway Product Specialist

Frequently Asked Questions

Barracuda Email Security Gateway - ESG200

Tagging
• Why tag email? What happens to tagged emails?
• Tagging email benefits organizations by easily identifying messages that meet set
criteria. Tagged emails are delivered to the recipient with a customizable label, such
as [BULK], that is added to the subject of the message.

Technologies
• What new technologies has the Barracuda Email Security
Gateway added to combat the latest spam campaigns?
• Multi-Pass Optical Character Recognition Engine
• Predictive Sender Profiling
• Barracuda Real-Time Protection

12
 ESG200 - Barracuda Email Security Gateway Product Specialist

Management
• How much time will I spend installing and maintaining the
Barracuda Email Security Gateway?
Without any tuning, the Barracuda Email Security Gateway offers:
• 95 percent spam accuracy rate
• 0.01 percent false positive rate
• In as little as 15 minutes.

Threat Protection
• How does the Barracuda Email Security Gateway protect
organizations from spear phishing and BEC?
Spear phishing attacks are:
• Highly personalized
• Typically very low volume
• No malicious attachments or links inside

Because of this, they are very hard to stop with existing email security solutions. As a
complement to the Barracuda Email Security Gateway, Barracuda Sentinel is the
leading comprehensive AI solution for real-time spear phishing and cyber fraud
defense.

Thank You For Attending

Barracuda Email Security Gateway - ESG200

13