NetworkTigers examines the oversights and bad habits that compromise network stability, security, and performance.
Networks rarely collapse from a single failure. Most of the time, they degrade gradually due to neglect, poor planning, or weak processes. The result is instability, security gaps, and reduced user confidence in IT.
Mistake 1. Overwhelming your PoE capability
Power over Ethernet budgets vary by switch model and standard. Adding too many devices without checking consumption can cause instability.
Action: Calculate PoE budgets by switch and standard (802.3af, 802.3at, 802.3bt) before deployment and leave margin for expansion.
Mistake 2. Misunderstanding your wireless needs
Wi-Fi performance depends on careful planning. Poor AP placement and channel overlap create interference and connectivity issues. Wi-Fi 6 and 6E make RF planning even more important.
Action: Perform a site survey and plan AP density, channel allocation, and transmit power based on coverage and capacity requirements.
Mistake 3. Mismanaging your VPNs or skip them entirely
Insecure VPN configurations expose traffic, and a lack of VPNs drives users to unsafe alternatives. In some cases, ZTNA or SD-WAN with integrated security may provide better solutions.
Action: Standardize secure remote access with VPN, ZTNA, or SD-WAN and enforce MFA across all access methods.
Mistake 4. Ignoring firewall firmware and services
Outdated firewall software and signatures reduce effectiveness. Some organizations also rely on firewalls alone instead of layered defenses.
Action: Apply firmware updates regularly, maintain threat intelligence subscriptions, and support firewalls with IDS/IPS and endpoint protection.
Mistake 5. Refusing to upgrade as times change
End-of-life equipment lacks vendor support and security updates, creating operational and compliance risks.
Action: Track vendor lifecycle announcements and budget for replacements before support ends.
Mistake 6. Building no redundancy
Single points of failure result in outages when components fail.
Action: Provide redundant links, devices, and power sources for all critical systems.
Mistake 7. Scheduling upgrades on Friday
Changes made before low staffing periods create unnecessary risk.
Action: Perform upgrades during windows with full staff availability to respond to problems.
Mistake 8. Lacking an incident response plan on weekends
If no staff are available, incidents escalate without response.
Action: Establish an on-call rotation and escalation process that ensures coverage at all times.
Mistake 9. Ignoring your staff’s strengths
Assigning staff to tasks outside their expertise or giving too many unrelated responsibilities leads to errors and delays.
Action: Align work with skills, balance assignments, and provide training where needed.
Mistake 10. Ignoring patch management
Unpatched systems contain known vulnerabilities that attackers exploit.
Action: Maintain a patch cycle with testing and phased rollouts to close vulnerabilities promptly.
Mistake 11. Skipping network monitoring
Without monitoring, problems are only detected after users report them.
Action: Deploy monitoring tools, configure alerts, and baseline performance for proactive detection.
Mistake 12. Keeping documentation in your head
If knowledge is undocumented, systems cannot be maintained when individuals are unavailable.
Action: Maintain centralized, version-controlled documentation accessible to all relevant staff.
Mistake 13. Sticking with factory-default configs
Default settings and passwords create security gaps and configuration issues.
Action: Change all credentials, disable unnecessary services, and align configurations with production standards.
Mistake 14. Never testing your backups
Backups are not valid unless restoration is verified.
Action: Test restores on a scheduled basis to confirm data can be recovered.
Mistake 15. Buying the cheapest optics
Uncertified or untested optics may not meet standards, causing performance issues.
Action: Use vendor-approved or certified optics and test third-party gear before deployment.
Mistake 16. Letting support contracts expire
Without support contracts, outages last longer and recovery options are limited.
Action: Track renewal dates and maintain coverage for all critical systems.
Mistake 17. Enabling every feature
Activating unnecessary features increases complexity and creates risk.
Action: Enable only the features required for business needs and document configuration changes.
Mistake 18. Creating VLAN sprawl
Too many unstructured VLANs increase complexity and reduce clarity.
Action: Design VLANs with clear purpose, document them, and remove unused segments.
Mistake 19. Hard-coding everything
Excessive static addressing makes networks difficult to scale and maintain. Critical devices still require static IPs, but overuse reduces flexibility.
Action: Reserve static IPs for infrastructure and use DHCP reservations where possible.
Mistake 20. Flattening the network
Mixing traffic from different trust levels increases exposure and limits control.
Action: Segment traffic using VLANs and firewalls and apply least privilege access principles.
Mistake 21. Letting SSL certificates expire
Expired certificates interrupt services and reduce trust.
Action: Implement automated certificate tracking and renewal systems.
Mistake 22. Ignoring UPS batteries
UPS batteries degrade and fail without regular replacement.
Action: Test batteries on schedule and replace them as recommended by the manufacturer.
Mistake 23. Leaving cabling unlabeled
Unlabeled cables delay troubleshooting and increase risk of errors during changes.
Action: Label both ends of every cable and keep diagrams updated.
Mistake 24. Sharing one admin password
Shared credentials eliminate accountability and increase risk.
Action: Assign individual accounts, enforce role-based access, and use Privileged Access Management (PAM) systems.
Mistake 25. Falling behind on firmware
Devices running outdated firmware miss critical fixes and stability improvements.
Action: Implement a firmware update process and track versions in production.
Mistake 26. Skipping logging or let it fill up
Without proper logging, troubleshooting is hindered and compliance requirements may be violated.
Action: Centralize logs, apply retention policies, and ensure sufficient storage capacity.
Mistake 27. Giving vendors permanent VPN access
Permanent vendor access creates unnecessary exposure.
Action: Provide temporary, just-in-time access with MFA and expiration policies, and audit all sessions.
Mistake 28. Assuming the cloud is enough
Cloud providers experience outages, and customers remain responsible for their own resilience.
Action: Design for redundancy, maintain backups under customer control, and test disaster recovery procedures.
Mistake 29. Putting primary and backup in the same rack
Co-locating redundant systems removes the value of redundancy.
Action: Separate redundant equipment physically and power them from different sources.
Mistake 30. Never cleaning up firewall rules
Old and overly permissive rules increase the attack surface.
Action: Document rule purpose and creation date, audit quarterly, and remove unused or broad entries.
Avoid these mistakes to keep your network stable
Stable networks require process discipline, accurate documentation, and proactive planning. While hardware and software evolve, the root causes of downtime are often errors and complacency. Addressing these issues will not eliminate risk, but it will reduce outages and make failures more predictable.
About NetworkTigers
NetworkTigers is the leader in the secondary market for Grade A, seller-refurbished networking equipment. Founded in January 1996 as Andover Consulting Group, which built and re-architected data centers for Fortune 500 firms, NetworkTigers provides consulting and network equipment to global governmental agencies, Fortune 2000, and healthcare companies. www.networktigers.com.
