Three days later, the new VPN gear had arrived. But try as they might, the TLA techs couldn't make it connect. Again, I sat in on the endless conference calls where the facts were repeated and the solutions were non-existent.
Five minutes into one such call, I asked for explicit details of what they were doing. I had assumed that the senior router personnel who managed the VPN equipment knew how to set up a point-to-point tunnel. Was I ever wrong! I made a few suggestions, very basic stuff, and it was like I'd illuminated their world.
A couple of days later, TLA finally managed to achieve a VPN tunnel -- but nothing flowed across it. CrackBerrys buzzed for hours into each evening. Finally, we scheduled yet another conference call, but this one was flagged as High Importance so that we could get to the bottom of the issue. The Head Honcho was even scheduled to attend.
Everyone from my side made the call. Only one guy bothered to dial in from TLA -- and he could barely spell VPN. Everyone else from TLA blew it off.
The Head Honcho was irritated, but inexplicably determined to get our money's worth from TLA and refused to fly any of our IT staff to the site or let us do more than "look in" on what TLA was doing.
By this time, with my exasperated manager's blessing, I had prototyped the whole solution in the lab with the equipment the division was known to have on hand. It was only six clicks in a GUI to configure everything for a VPN tunnel. I sent TLA the tested configurations, and they still were not able to make it work. Both my manager and I again asked The Head Honcho if we could take control of the site. Again, denied. We were paying TLA to manage it.
E-mails kept flying back and forth about the VPN issue. TLA was still stumped and fell back to their same old plea for a new router.
This time, The Head Honcho allowed me to ship a router, not decked out like TLA requested, but more than capable of doing the job for years to come. Somehow TLA managed to implement that without any help, and with impressive speed. It worked well enough to get the division through until the contract with TLA closed.
Finally, that day arrived, and our IT department had control of the remote routers. As part of the migration, I attempted to install our preferred standard arrangement with a local firewall and VPN -- the same solution we had proposed early on and TLA had not been able to implement. It worked for me on the first try.
In the end, it was confirmed that none of the TLA techs really knew what they were doing. The talent that had built the division's network left for more lucrative contracts as soon as our company acquired the division. Since we were known to be working toward assuming ownership of all hardware and support, TLA gave us the B-team.
Maybe next time The Head Honcho will not be as stubborn to prove a point or at least let us know the reasoning. Or maybe not. There are things in corporate culture that won't change, but the point is to keep trying. And in the meantime, keep cashing the checks.
This story, "I could do my IT job if management got out of the way," was originally published at InfoWorld.com.