Three common firewall configuration mistakes
As security threats become ever more advanced, and companies are ever more aware of the financial and reputational damage that can be caused by cyber attacks, it is essential to ensure that your business is protected. One of the best ways to add an extra layer of protection between your systems and cyber criminals is through the use of a firewall, which screens incoming channels and blocks malicious probes.
However, while a firewall can offer you huge amounts of protection, it will only do so if it has been configured correctly. As such, our experts at Reliance Networks have created a short list of the most common firewall configuration mistakes, so that you don’t make them too.
1. Broad policy configurations
Many firewalls are initially set up with broad policy configurations, allowing traffic from any source or destination, as many companies don’t know exactly what they need from the firewall at the outset. Theoretically, IT departments should then work backwards, narrowing the configurations to the required level, offering extra protection. In reality, many people forget about this, leaving their network exposed.
2. Test systems using real data
Many companies will have test systems which are used to train new employees and allow IT departments to test out system updates and software changes. Because these are not ‘real’ systems, they are often given less protection. However, if a company chooses to use their own data rather than fake data in the test system, problems may occur. As such, firewalls must extend to these test systems or, better yet, ensure that test systems only use fake information.
3. Not using standard authentication methods
Authentication methods are used to ensure that only those with clearance can access information. Your company should have high levels of authentication requirements across all systems, which should be applied universally. However, if you use different authentication methods such as weaker passwords, it will be far easier for criminals to bypass or even break through your firewall, allowing them to access your data.
If you need help managing your firewall, then why not use FwaaS (Firewall as a service)? For more information, contact us on 01625 466600.