Customer Support
0113 532 9800
Email Us
SME firewall configuration

Why SME Firewalls Fail: It’s Not the Box, It’s the Configuration

When businesses invest in a firewall, there’s often a sense of relief – “that’s our network secured.”

But the reality is that SME firewall configuration is where most problems begin, not where they’re solved.

We regularly review SME environments where a perfectly capable firewall is already in place – Fortinet, SonicWall, Cisco, Ubiquiti – you name it. The hardware isn’t the issue.

So why do breaches, vulnerabilities, and security gaps still happen?

Simple: it’s not the box – it’s the configuration.

The Myth: “We’ve Got a Firewall, So We’re Secure”

This is one of the most common assumptions we come across.

A firewall isn’t a “set and forget” device. It’s a policy engine – and like any policy-driven system, it’s only as good as the way it’s configured, monitored, and maintained.

Without proper setup, a firewall quickly becomes little more than an expensive router.

Where SME Firewall Configuration Wrong

Here are some of the most common configuration issues we see in SME environments:

1. Overly Permissive Rules (“Allow Any”)

To get things working quickly, broad rules are often created:

  • Any source
  • Any destination
  • Any service

It might solve an immediate problem, but it effectively punches a hole straight through your perimeter.

Over time, these rules stack up – and no one is quite sure why they’re there anymore.

2. No Outbound Filtering

Many SMEs focus purely on inbound traffic and forget about outbound control.

This creates a major risk:

  • Malware can call home
  • Compromised devices can exfiltrate data
  • Users can access risky services without restriction

A properly configured firewall controls traffic in both directions.

3. Security Features Left Disabled

Modern firewalls include advanced protection such as:

  • Intrusion Prevention (IPS)
  • Web filtering
  • Application control
  • SSL inspection

In many SME setups, these features are:

  • Not licensed
  • Not enabled
  • Or worse… enabled but misconfigured

That’s like buying a high-end security system and leaving half the sensors turned off.

4. No Visibility or Logging

If you can’t see what’s happening, you can’t protect against it.

We often find:

  • Logging disabled
  • Logs not reviewed
  • No alerting configured

This means threats can exist quietly for weeks – or months – without being detected.

5. Firmware and Patch Neglect

Firewalls themselves are not immune to vulnerabilities.

Without regular updates:

  • Known exploits remain open
  • Security features fall behind
  • Vendor protections don’t evolve

Patch management for firewalls is just as critical as it is for servers and endpoints.

6. Poor Network Segmentation

Flat networks are still incredibly common in SMEs:

  • Servers, desktops, Wi-Fi, and IoT devices all on one LAN

If an attacker gains access to one device, they can often move freely across the entire network.

A properly configured firewall should enforce:

  • VLAN segmentation
  • Restricted inter-network access
  • Principle of least privilege

The Reality: Firewalls Need Ongoing Management

A secure firewall isn’t something you configure once and walk away from.

It requires:

  • Continuous rule review
  • Threat monitoring and alerting
  • Regular firmware updates
  • Adjustment as the business evolves

In other words, it’s a managed service, not a one-off project.

The Hidden Risk for SMEs

Large enterprises have dedicated security teams.  SMEs don’t.

That means firewall management often falls to:

  • An internal “IT person” with limited time
  • A general MSP without a strong security focus
  • Or no one at all

The result? A growing gap between perceived security and actual security.

So What Does “Good” Look Like?

A properly managed firewall environment should include:

  • Clearly defined and documented rule sets
  • Least privilege access policies
  • Active threat prevention features enabled and tuned
  • Secure remote access (VPN with MFA)
  • Centralised logging and alerting
  • Regular audits and configuration reviews

Most importantly – it should be actively looked after, not ignored.

This isn’t just our opinion – the National Cyber Security Centre (NCSC) also emphasises that systems need to be securely configured, maintained, and continuously updated to remain effective as threats evolve.  You can read more in their guidance on architecture and configuration here:  Architecture and configuration | National Cyber Security Centre

Where Core Team One Comes In

At Core Team One, we take a security-first approach to firewall management.

That means:

  • We don’t just deploy firewalls – we own the configuration and ongoing security posture
  • We continuously review and refine rule sets
  • We enable and tune advanced protection features
  • We monitor for threats and suspicious activity
  • We keep firmware up to date and aligned with best practice

Because the reality is simple:

👉 A firewall is only as strong as the way it’s managed.

Final Thoughts

If you’ve invested in a firewall, that’s a great first step.

But the real question is:  Is it actually protecting you the way you think it is?

If you’re not sure – or if it hasn’t been reviewed in a while – there’s a good chance there are gaps.

Want a second opinion on your firewall setup?  We offer straightforward, no-nonsense firewall reviews for SMEs – identifying risks, tightening configurations, and ensuring your investment is actually doing its job.

👉 Get in touch with Core Team One today to arrange your firewall health check.

Similar posts you might like

View all

Fast friendly IT support.
We’re here to help.

Talk to us about your business challenges.

Get in touch

Contact Us