What’s In a Checkbox: Part 2?

December 5, 2008 · Filed Under Business, Technology

Back in May I wrote a post, What’s In a Checkbox.

Just what’s in a checkbox? That is the question I was asking myself after 6+ hours and 5 engineers finally figured out 1 little checkbox needed to be unchecked for an entire phone system to start working.

Well, this time I must have won some sick and twisted lottery of suffering!

As many of my friends and colleagues know, my company was recently acquired. As part of the arrangement, much of our existing IT infrastructure is be decommissioned over the next 2 years. While this fact is bittersweet, the task of actually accomplishing this is nothing if not bitter.

By this I simply mean the laborious tasks of undoing and redoing everything that has been built over the past 5 years, while continuing to take care of day-to-day operations, is a tall order.

The first move was our corporate web site, and this went very smoothly thanks to professionals on 3 different teams working together.

Next on the agenda was to transfer all e-mail traffic to corporate starting after week 2 of the acquisition. It was decided we would use Microsoft Outlook’s RPC over HTTPS option to connect via the Internet to the corporate Exchange server. This would minimize the impact to end-users as we were already using the same configuration for the past 2 years in order to create a convenient and secure tunnel for e-mail traffic without need of slow VPN connections.

Well, things were moving fast. We had migrated 1/3 of our internal customers within a few days - and then HTTPS traffic ground to a halt on our firewall.

What does this mean?

Not only did e-mail quit working - all traffic, going to secure web sites, was out of service.

We engaged resources from all sides:

Myself, a Branch Network Administrator and Software Engineer
Another Branch’s Network Administrator and Technology Manager
A corporate Exchange Administrator, WAN Engineer, and Project Manager
2 WatchGuard Engineers
1 ISP WAN Engineer
and finally 1 Cisco Engineer

We ran studies, and tried this and that, and spent days and days trying to figure out just what was happening. Countless hours on phone conversations yielded little to no results. Finally, we opted to go with another plan: connecting a VPN tunnel to corporate, a recommendation made by a sister branch.

Security assessments had to be completed to ensure that attaching our foreign network to the corporate WAN wouldn’t disrupt network performance or wouldn’t create any unnecessary security risks.

Our Cisco Engineer was called in to talk on the painful process of reclassifying our entire network, or if simpler steps could be taken. In the process of talking through this, I asked if he was familiar with our firewall. Luckily, he had worked with them before, and had a friend that really knew his way around.

He attached his notebook computer to our network, simply to ensure he was seeing the same thing we did, and sure enough he did. He then proceeded to walk through our configuration with his friend and landed on 1 checkbox that might just fix the problem.

He unchecked the box (1:1 NAT for the HTTPS service, if anyone is interested), and traffic instantly began flowing - like a river had been turned loose from its dam.

One checkbox made the difference, and my question was that after 3 weeks and a slew of experts looking at the problem, why did 1 checkbox save the day? Why didn’t my firewall vendor even recommend this after talking with 2 of their engineers? Were they not listening to the problems I was describing? Could they not see the configuration and traffic from themselves (via their remote monitoring tools)? Did I simply not have them looking at the right symptoms?

Why did it take 1 man less than 2 hours to figure it out when so many could not figure it out? Why did our sister division (with the same network configuration) not even see it 8 months prior?

It just goes to show you, who you know is much more important than what you know!

Ken Stewart’s blog, ChangeForge.com, focuses on the collision between the constantly changing worlds of business and technology. To learn more about Ken, visit his about page. You may also find Ken on FriendFeed, Twitter, and LinkedIn.

Do you understand what your customers are trying to accomplish?

What’s in a Checkbox

The changing face of WatchGuard Technologies

Tags: firewall, VPN, WAN, WatchGuard

Comments

Viewing 9 Comments

Strong One 12/05/2008 08:12 PM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

WOW. All over one check box. I guess it truly is the little things in life that can make a big difference. And in this case the difference between progress and a standstill.
Have a great weekend my friend.

reply edit reblog flag record video comment

1 /people/2bestrong/ /people/2bestrong/following/ http://mystrongmedicine.com in/2bestrong 2bestrong 2bestrong 2bestrong

GregWalters 12/06/2008 02:57 PM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

wow...the check box strikes, again!

well, at least all this bother is a temporary thing - email is just a fad - it will go the way or wireless and digital TV...

BTW, anyone interested in a Buggy Whip? I got 1,000s, cheap.

reply edit reblog flag record video comment

2 /people/GregWalters/ /people/GregWalters/following/

ChangeForge | Ken Stewart 12/06/2008 04:26 PM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

It's amazing to me just how dependent everyone has become on e-mail and e-mail enabled mobile devices. I had an associate who had some issues resynching a blackberry to the new corporate server and he completely lost his mind when he couldn't access his e-mail, calendar and contacts on his BB. Amazing that his life ground to halt without it. What did you do before you had all this technology helping you? How about a coffee shop?

reply edit reblog flag record video comment

17 /people/changeforge/ /people/changeforge/following/ http://www.changeforge.com 1272111880 in/ken75 changeforge

Frick 12/06/2008 11:45 PM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

[QUOTE]It's amazing to me just how dependent everyone has become on e-mail and e-mail enabled mobile devices.[/QUOTE]
It's the death of distance (Tom Peters) - I can't remember the last time the I wasn't "connected". How many of us check our e-mail on vacation? I do, because I can't afford to spend the better part of my first day back digging myself out of the e-mail hole.

reply edit reblog flag record video comment

http://fricksworld.blogspot.com/

ChangeForge | Ken Stewart 12/07/2008 01:53 AM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

The interesting thing here is that by all of us being so very "connected", what I am finding is that it can really distance us from more vivid relationships. Perhaps you do not have this particular issue, but it is amazing how distracting just looking at a mobile phone or PDA can be to those you are trying to "be with".

While on vacation, I can most certainly relate to the hole you can get into. I always joke it takes me 3 weeks to dig out from 1 week of vacation.

In essence though, our electronic connectivity is tearing the very fabric of our human relationships, in my humble opinion. I feel this need to "stay in touch". But when I step back and evaluate what is driving that need - that is when I actually see what is important... Not that I have successfully conquered that last mile, my friend!

Indeed, I have a long way left to travel on this front. Now my burning question is how to seek harmony and balance in this new age of information overload!

reply edit reblog flag record video comment

17 /people/changeforge/ /people/changeforge/following/ http://www.changeforge.com 1272111880 in/ken75 changeforge

bentrem 12/14/2008 02:26 AM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

Everybody should know the story I'm about to relate, if for no other reason than to save me typing it out.

Scenario: on the day a flag-ship high-rise is to be unveiled, the AC conks out.
Go through your scenario compacted into a 6 hour period.
A grizzled grumpy ace is called in.
He scours the blue-prints, plans, crawl spaces, and eventually asks for access to one closet (let's say).
Eye-balling the contents he draws up to one assembly and locks onto one module.
Going into his kit he pulls out a silver hammer and *whack!* everything purrs into action.

He submits a bill for $25K.
They balk, and ask that it be itemized.

* Hitting with hammer: $9
* Knowing where to hit: $24,991

I was solo on Pin 3 responsible for NORAD/SAC comms south to Cheyenne Mountain.
If comms failed nearest more expert was ?what? at least 12 hrs away.
When things went wrong I was expected to fix it in less than 3 minutes.
Almost as fun as tennis!
*grin*

Insight isn't to be confused with knowledge. The difference is like training contra education.

cheers

reply edit reblog flag record video comment

1 /people/bentrem/ /people/bentrem/following/ http://bentrem.sycks.net

ChangeForge | Ken Stewart 12/14/2008 02:34 AM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

I love it!

reply edit reblog flag record video comment

17 /people/changeforge/ /people/changeforge/following/ http://www.changeforge.com 1272111880 in/ken75 changeforge

sem philippines 01/10/2009 04:38 PM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

me too!

reply edit reblog flag record video comment

1 /people/BusbySEOTesting/ /people/BusbySEOTesting/following/

BusbySeo 12/15/2008 06:39 AM 1 point
Please login to rate.

Do you already have an account? Log in and claim this comment.

Tout le monde devrait savoir l'histoire, je suis sur le point de porter, si pour aucune autre raison que de me mettre à taper il.

reply edit reblog flag record video comment

1 /people/BusbySeo/ /people/BusbySeo/following/ http://pinayspeak.com/pinaytest/

Trackbacks

(Trackback URL)

Twitter: The Answer To a Call For Help! | ChangeForge | Ken Stewart | Where business and technology collide
December 14, 2008 at 1:51 am

[...] As we began to ramp up our efforts, our firewall decided it evidently was going to play along, and ...
Is the Sun Setting On WatchGuard | ChangeForge | Ken Stewart | Where business and technology collide
December 20, 2008 at 10:42 pm

[...] customer service and unresponsive technical support simply makes things worse. In a recent article, What’s In a Checkbox: Part ...

blog comments powered by Disqus

ChangeForge follows...
If you're interested...
Subscribe...
Posts Calendar

December 2008

S M T W T F S

« Nov Jan »

1 2 3 4 5 6

7 8 9 10 11 12 13

14 15 16 17 18 19 20

21 22 23 24 25 26 27

28 29 30 31
The Archives
- June 2009 (7)
- May 2009 (7)
- April 2009 (9)
- March 2009 (9)
- February 2009 (12)
- January 2009 (14)
- December 2008 (12)
- November 2008 (7)
- October 2008 (14)
- September 2008 (18)
- August 2008 (22)
- July 2008 (30)
- June 2008 (17)
- May 2008 (22)
- April 2008 (29)
- March 2008 (33)
Categories
- Business (174)
- Change (144)
- Contributing Authors (25)
- Culture (107)
- EDM (23)
- MPS (28)
- Personal (5)
- Politics (2)
- Quote of the Day (13)
- Social Media (26)
- Solutions Selling (16)
- State of the Blog (28)
- Technology (109)
- Video (3)

December 2008
S	M	T	W	T	F	S
« Nov		Jan »
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

You are welcome to change...

ChangeForge is a place where business and technology collide with a desire to alter a paradigm and improve how we perceive those things around us. This site is built upon the premise of offering a platform to share ideas and start conversations. This site focuses upon change and shifting paradigms, offering perspective on how technology can be applied to business problems while maintaining a people-friendly perspective. ChangeForge covers a wide variety of topics, but will primarily focus on strategies revolving around bridging technology and business, hosting authors from different walks of life and offering brain-fodder on many different fronts.
Enter your email address:
Delivered by FeedBurner
A little disclaimer...

In this day and age, people don't seem to get that you can have an opinion of your own, and that people are entitled to a responsible opinion. As such, ChangeForge is a place for me to post opinions on various things relating to business and technology. These opinions are those of the author alone, and do not necessarily reflect the opinions of respective employers, co-workers, or those referenced within this site. If you take issue with these opinions, you are most welcome to move on to another slice of the cloud. My hope, however, is that you will engage in some level of an intellectual debate in an effort to learn something, teach me something, or simply make the world just a little better...
ChangeForge... a catalyst to affect the paradigm by Ken Stewart is licensed under a Creative Commons Attribution-Share Alike 3.0 United States License.
Based on a work at www.changeforge.com.
Image credit for header tagline underlay armin san

	DandyID
	Disqus
	Facebook
	Friendfeed
	Google Reader
	IntenseDebate
	Lijit
	Linkedin
	Seesmic
	Technorati
	Twitter
	Viddler

What’s In a Checkbox: Part 2?

Comments

Add New Comment

Viewing 9 Comments

Add New Comment

Trackbacks

Social Me

ChangeForge follows...

If you're interested...

Subscribe...

Posts Calendar

The Archives

Categories

You are welcome to change...

A little disclaimer...