Sharing Failure as a Learning Model

Earlier this week there was a great tweet from my friends over at Juniper Networks about mistakes we’ve made in networking:

It got some interactions with the community, which is always nice, but it got me to thinking about how we solve problems and learn from our mistakes. I feel that we’ve reached a point where we’re learning from the things we’ve screwed up but we’re not passing it along like we used to.

Write It Down For the Future

Part of the reason why I started my blog was to capture ideas that had been floating in my head for a while. Troubleshooting steps or perhaps even ideas that I wanted to make sure I didn’t forget down the line. All of it was important to capture for the sake of posterity. After all, if you didn’t write it down did it even happen?

Along the way I found that the posts that got significant traction on my site were the ones that involved mistakes. Something I’d done that caused an issue or something I needed to look up through a lot of sources that I distilled down into an easy reference. These kinds of posts are the ones that fly right up to the top of the Google search results. They are how people know you. It could be a terminology post like defining trunks. Or perhaps it’s a question about why your SPF modules are working in a switch.

Once I realized that people loved finding posts that solved problems I made sure to write more of them down. If I found a weird error message I made sure to figure out what it was and then put it up for everyone to find. When I documented weird behaviors of BPDUGuard and BPDUFilter that didn’t match the documentation I wrote it all down, including how I’d made a mistake in the way that I interpreted things. It was just part of the experience for me. Documenting my failures and my learning process could help someone in the future. My hope was that someone in the future would find my post and learn from it like I had.

Chit Chat Channels

It used to be that when you Googled error messages you got lots of results from forum sites or Reddit or other blogs detailing what went wrong and how you fixed it. I assume that is because, just like me, people were doing their research and figuring out what went wrong and then documenting the process. Today I feel like a lot of that type of conversation is missing. I know it can’t have gone away permanently because all networking engineerings make mistakes and solve problems and someone has to know where that went, right?

The answer came to me when I read a Reddit post about networking message boards. The suggestions in the comments weren’t about places to go to learn more. Instead, they linked to Slack channels or Discord servers where people talk about networking. That answer made me realize why the discourse around problem solving and learning from mistakes seems to have vanished.

Slack and Discord are great tools for communication. They’re also very private. I’m not talking about gatekeeping or restrictions on joining. I’m talking about the fact that the conversations that happen there don’t get posted anywhere else. You can join, ask about a problem, get advice, try it, see it fail, try something else, and succeed all without ever documenting a thing. Once you solve the problem you don’t have a paper trail of all the things you tried that didn’t work. You just have the best solution that you did and that’s that.

You know what you can’t do with Slack and Discord? Search them through Google. The logs are private. The free tiers remove messages after a fashion. All that knowledge disappears into thin air. Unlike the Wisdom of the Ancients the issues we solve in Slack are gone as soon as you hit your message limit. No one learns from the mistakes because it looks like no one has made them before.

Going the Extra Mile

I’m not advocating for removing Slack and Discord from our daily conversations. Instead, I’m proposing that when we do solve a hard problem or we make a mistake that others might learn from we say something about it somewhere that people can find it. It could be a blog post or a Reddit thread or some kind of indexable site somewhere.

Even the process of taking what you’ve done and consolidating it down into something that makes sense can be helpful. I saw X, tried Y and Z, and ended up doing B because it worked the best of all. Just the process of how you got to B through the other things that didn’t work will go a long way to help others. Yes, it can be a bit humbling and embarrassing to publish something that admits you that you made a mistake. But It’s also part of the way that we learn as humans. If others can see where we went and understand why that path doesn’t lead to a solution then we’ve effectively taught others too.


Tom’s Take

It may be a bit self-serving for me to say that more people need to be blogging about solutions and problems and such, but I feel that we don’t really learn from it unless we internalize it. That means figuring it out and writing it down. Whether it’s a discussion on a podcast or a back-and-forth conversation in Discord we need to find ways to getting the words out into the world so that others can build on what we’ve accomplished. Google can’t search archives that aren’t on the web. If we want to leave a legacy for the DenverCoder10s of the future that means we do the work now of sharing our failures as well as our successes and letting the next generation learn from us.

The Mystery of Known Issues

I’ve spent the better part of the last month fighting a transient issue with my home ISP. I thought I had it figure out after a hardware failure at the connection point but it crept back up after I got back from my Philmont trip. I spent a lot of energy upgrading my home equipment firmware and charting the seemingly random timing of the issue. I also called the technical support line and carefully explained what I was seeing and what had been done to work on the problem already.

The responses usually ranged from confused reactions to attempts to reset my cable modem, which never worked. It took several phone calls and lots of repeated explanations before I finally got a different answer from a technician. It turns out there was a known issue with the modem hardware! It’s something they’ve been working on for a few weeks and they’re not entirely sure what the ultimate fix is going to be. So for now I’m going to have to endure the daily resets. But at least I know I’m not going crazy!

Issues for Days

Known issues are a way of life in technology. If you’ve worked with any system for any length of time you’ve seen the list of things that aren’t working or have weird interactions with other things. Given the increasing amount of interactions that we have with systems that are becoming more and more dependent on things it’s a wonder those known issue lists are miles long by now.

Whether it’s a bug or an advisory or a listing of an incompatibility on a site, the nature of all known issues is the same. They are things that don’t work that we can’t fix yet. They could be on a list of issues to resolve or something that may never be able to be fixed. The key is that we know all about them so we can plan around them. Maybe it’s something like a bug in a floating point unit that causes long division calculations to be inaccurate to a certain number of decimal places. If you know what the issue is you know how to either plan around it or use something different. Maybe you don’t calculate to that level of precision. Maybe you do that on a different system with another chip. Whatever the case, you need to know about the issue before you can work around it.

Not all known issues are publicly known. They could involve sensitive information about a system. Perhaps the issue itself is a potential security risk. Most advisories about remote exploits are known issues internally at companies before they are patched. While they aren’t immediately disclosed they are eventually found out when the patch is released or when someone discovers the same issue outside of the company researchers. Putting these kinds of things under an embargo of sorts isn’t always bad if it protects from a wider potential to exploit them. However, the truth must eventually come out or things can’t get resolved.

Knowing the Unknown

What happens when the reasons for not disclosing known problems are less than noble? What if the reasoning behind hiding an issue has more to do with covering up bad decision making or saving face or even keeping investors or customers from fleeing? Welcome to the dark side of disclosure.

When I worked from Gateway 2000 back in the early part of the millennium, we had a particularly nasty known issue in the system. The ultimate root cause was that the capacitors on a series of motherboards were made with poor quality controls or bad components and would swell and eventually explode, causing the system to come to a halt. The symptoms manifested themselves in all manner of strange ways, like race conditions or random software errors. We would sometimes spend hours troubleshooting an unrelated issue only to find out the motherboard was affected with “bad caps”.

The issue was well documented in the tech support database for the affected boards. Once we could determine that it was a capacitor issue it was very easy to get the parts replaced. Getting to that point was the trick, though. Because at the top of the article describing the problem was a big, bold statement:

Do Not Tell The Customer This Is A Known Issue!!!

What? I can’t tell them that their system has an issue that we need to correct before everything pops and shuts it down for good? I can’t even tell them what to look for specifically when we open the case? Have you ever tried to tell a 75-year-old grandmother to look for something “strange” in a computer case? You get all kinds of fun answers!

We ended up getting creative in finding ways to look for those issues and getting them replaced where we could. When I moved on to my next job working for a VAR, I found out some of those same machines had been sold to a customer. I opened the case and found bad capacitors right away. I told my manager and explained the issue and we started getting them replaced under warranty as soon as the first sign of problems happened. After the warranty expired we kept ordering good boards from suppliers until we were able to retire all of those bad machines. If I hadn’t have known about the bad cap issue from my help desk time I never would have known what to look for.

Known issues like these are exactly the kind of thing you need to tell your customers about. It’s something that impacts their computer. It needs to be fixed. Maybe the company didn’t want to have to replace thousands of boards at once. Maybe they didn’t want to have to admit they cut corners when they were buying the parts and now the money they saved is going to haunt them in increased support costs. Whatever the reason it’s not the fault of the customer that the issue is present. They should have the option to get things fixed properly. Hiding what has happened is only going to create stress for the relations between consumer and provider.

Which brings me back to my issue from above. Maybe it wasn’t “known” when I called the first time. But by the third or fourth time I called about the same thing they should have been able to tell me it’s a known problem with this specific behavior and that a fix is coming soon. The solution wasn’t to keep using the first-tier support fixes of resets or transfers to another department. I would have appreciated knowing it was an issue so I didn’t have to spend as much time upgrading and isolating and documenting the hell out of everything just to exclude other issues. After all, my troubleshooting skills haven’t disappeared completely!

Vendors and providers, if you have a known issue you should admit it. Be up front. Honestly will get you far in this world. Tell everyone there’s a problem and you’re working on a fix that you don’t have just yet. It may not make the customer happy at first but they’ll understand a lot more than hiding it for days or weeks while you scramble to fix it without telling anyone. If that customer has more than a basic level of knowledge about systems they’ll probably be able to figure it out anyway and then you’re going to be the one with egg on your face when they tell you all about the problem you don’t want to admit you have.


Tom’s Take

I’ve been on both sides of this fence before in a number of situations. Do we admit we have a known problem and try to get it fixed? Or do we get creative and try to hide it so we don’t have to own up to the uncomfortable questions that get asked about bad development or cutting corners? The answer should always be to own up to things. Make everyone aware of what’s going on and make it right. I’d rather deal with an honest company working hard to make things better than a dishonest vendor that miraculously manages to fix things out of nowhere. An ounce of honestly prevents a pound of bad reputation.

Slow and Steady and Complete

StepTiles

I was saddened to learn last week that one of my former coworkers passed away unexpectedly. Duane Mersman started at the same time I did at United Systems and we both spent most of our time in the engineering area working on projects. We worked together on so many things that I honestly couldn’t keep count of them if I tried. He’s going to be missed by so many people.

A Hare’s Breadth

Duane was, in many ways, my polar opposite at work. I was the hard-charging young buck that wanted to learn everything there was to know about stuff in about a week and just get my hands dirty trying to break it and learn from my mistakes. If you needed someone to install a phone system next week with zero formal training or learn how iSCSI was supposed to operate based on notes sketched on the back of a cocktail napkin I was your nerd. That meant we could often get things running quickly. It also meant I spent a lot of time trying to figure out why things weren’t working. I left quite a few forehead-shaped dents in data center walls.

Duane was not any of those things. He was deliberate and methodical. He spent so much time researching technology that he knew it backwards and forwards and inside out. He documented everything he did while he was working on it instead of going back after the fact to scribble down some awkward prose from his notes. He triple checked all his settings before he ever implemented them. Duane wouldn’t do anything until he was absolutely sure it was going to work. And even then he checked it again just to be sure.

I used to joke that we were two sides of the same coin. You sent me in to clean things up. Then you sent Duane in to clean up after me. I got in and out quickly but I wasn’t always the most deliberate. Duane would get in behind me and spend time making sure whatever I did was the right way. I honestly felt more comfortable knowing he would ensure whatever I did wasn’t going to break next week.

Turtle Soup

Management knew how to use us both effectively. When the customer was screaming and needed it done right now I was the guy. When you wanted things documented in triplicate Duane was the right man for the job. I can remember him working on a network discovery diagram for a medical client that was so detailed that we ended up framing it as a work of art for the customer. It was something that he was so proud of given the months that he toiled away on it.

In your organization you need to recognize the way that people work and use them effectively. If you have an engineer that just can’t be rushed no matter what you need to find projects for them to work on that can take time to work out correctly. You can’t rush people if they don’t work well that way. Duane had many gears but all of them needed to fit his need to complete every part of every aspect of the project. Likewise, hard chargers like me need to be able to get in and get things done with a minimum of distraction.

Think of it somewhat like an episode of The Witcher. You need a person to get the monsters taken care of but you also need someone to chronicle what happened. Duane was my bard. He documented what we did and made sure that future generations would remember it. He even made sure that I would remember the things that we did later when someone asked a question about it or I stated blaming the idiot that programmed it (spoiler alert: I was that idiot).

Lastly, Duane taught me the value of being a patient teacher. When he was studying to take his CCNP exams he spent a significant amount of time on the SWITCH exam learning the various states of spanning trees. I breezed through it because it mostly made sense to me. When he went through it he lobbed up every example and investigated all the aspects of the settings. He would ask me questions about why something behaved the way it did or how a setting could mess things up. As he asked me what I thought I tried to explain how I saw it. My explanations created more questions. But those questions helped me investigate why things worked the way they did. His need to know all about the protocol made me understand it at a more fundamental level than just passing an exam. He slowed me down and made sure I didn’t miss anything.


Tom’s Take

Duane was as much a mentor in my career as anyone. We learned from each other and we made sure to check each other’s work. He taught me that slow and steady is just as important as getting things done at warp speed. His need to triple check everything led me to do the same in the CCIE lab and is probably the reason why I eventually passed. His documentation and diagrams taught me to pay attention to the details. In the end he helped me become who I am today. Treasure the people you work with that take the time to do things right. It may take them a little longer than you’d like but in the end you’ll be happier knowing that they are there to make sure.

Follow My Leader

I spent the past two weeks enjoying the scenic views at the Philmont Scout Ranch with my son and some of his fellow Scouts BSA troop mates. It was very much the kind of vacation that involved a lot of hiking, mountain climbing, and even some inclement weather. We all completely enjoyed ourselves and I learned a lot about hanging bear bags and taking care of blisters. I also learned a lot about leadership by watching the boys in the crew interact with each other.

Storm Warnings

Leadership styles are nothing new to the people that read my blog. I’ve talked about them at length in the past. One thing I noticed when I was on the trek was how different leadership styles can clash and create friction among teenagers. As adults we tend to gloss over delivery and just accept that people are the way they are. When you’re fourteen or fifteen you haven’t quite taken that lesson to heart yet. That means more pushing against styles that don’t work for you.

We have all worked for or with someone that has a very authoritarian style in the past. The kind of people that say, “Do this right now” frequently. It’s a style that works well for things like military units or other places where decisions need to be quick and final. The crew leader exhibited that kind of leadership style to our crew. I sat back and watched how the other boys in the unit handled it.

If you’ve never gotten to watch the Stages of Team Development form in real time you’re missing out on a treat. I won’t go into too much depth here but the important stage happens after we get past the formation and into the Storming phase. This is where motivation and skill sets are low and the interaction between the members is primarily antagonistic. Arguments and defensiveness are more prevalent during storming. It happens every time and frequently occurs again and again as team members interact. It’s important to recognize the barriers that Storming creates and move past them to a place where the team puts the mission before their egos.

Easier said that done when you’re with a group of teenagers. I swear our group never really got past the storming phase for long. The end of the trek saw some friction still among the members. I couldn’t quite put my finger on why that was. After all, we grown ups can put things aside to focus on the mission, right? We can check our egos at the door and hope that we can just get past this next part to make things easier overall.

Style Points

That’s when our lead Crew Advisor pointed out a key piece of the puzzle I’d missed, even after all my time dealing with team development. He said to the crew on the last day, “There are a lot of leaders in this group. That’s why there was so much friction between you all.” It was like a lightbulb going off in my mind. The friction wasn’t the result of leadership styles inasmuch as it was the clash between styles that kids aren’t so good at hiding.

I’m not an authoritarian. I don’t demand people do things. I ask people to do things. Maybe when I want isn’t a request but it is almost always phrased that way. “Please walk the dog” or “Can you get me the hammer from the garage?” are common ways for me to direct my family or my unit. I was raised not to be a demanding person. However, in my house growing up those statements were never questions. I’ve continued that method of leadership as my own family has grown. Dad asks you to do something but it’s not optional.

Where my leadership style clashes is with people who tell you to do something right now. “Get this done” or “You go do this thing over here” wrankle me. Moreover, I get frustrated when I don’t understand the why behind it. I’m happy to help if you just help me understand why it needs to be done. Bear bags need to be hung right away to keep animals from devouring the human food. The dining fly needs to be put up to put things underneath in case of inclement weather. There’s an order to things that makes sense. You need to explain why instead of just giving orders.

As I watched the teenagers in the crew interact with each other I couldn’t understand the defensive nature of the interactions. Some of the crew mates flat out refused to do things because they didn’t get it. They took their time getting necessary tasks done because they felt like they were doing all the work. Until the end of the trip I didn’t understand that the reason for their lack of motivation wasn’t inspired by laziness, but instead by a clash in style.

My son is like me in that he asks people to do things. So when he was ordered to do something he felt the need to push back or express displeasure with the leadership style. It looked defiant because he was trying to communicate that politeness and explanation go a long way toward helping people feel more motivated to pitch in. 

For example, asking someone to help hang the bear bags because there is a storm coming in and they are the most efficient at it is a better explanation than telling them to just do it. Explaining that you want someone to train another person in a job because you excel at it helps the person understand this is more about education than making them do the job over and over again. I’ve mentioned it before when it comes to leaders leaning on the people that get the job done all the time without expressing why. It’s important to help people understand that they have special unique skills that are critical to helping out.

Promoting From Within

Leaders chafe at the styles that don’t match their own. One of the ways to help this process is through delegation. Instead of punishing those that talk back to you make them responsible for leading the group. Let them show off their leadership style to see how it is received. You’re essentially giving that person the power to express themselves to see if their way is better. Depending on your leadership style this may be difficult to do. Authoritarians don’t like letting go of their power. People with no patience are more likely to just do the job themselves instead of letting others learn. However, you need to do it.

Leaders will excel in the right environment. Give someone responsibility and let them accomplish things. Instead of simply giving out tasks let the leaders figure out how to accomplish the goals. I ran a small experiment where I told our crew leader to just take care of his one responsibility and then leave the crew to their own devices. By this point in the trek they knew what needed to be done. If they couldn’t find the motivation to get it done then it was on them and not the leader. Weather forced my hand before I could get the experiment done but when a leader is having issues with those under then chafing at their leadership style they need to empower their group to lead their way to see how effective it can be instead of just falling back on “I’m in charge so you do what I say”.


Tom’s Take

My leadership experience and training has been all about creating artificial situations where people are required to step up to lead. Seeing it happen organically was a new experience for me. Leaders emerge naturally but they don’t all grow at the same rate or in the same way. The insight gained at the end of the trip helped me understand the source of friction over the twelve days were were in the backcountry. I think I’d do things a little differently next time given the opportunity to allow those that needed a different style to come forward and provide their own way of doing things. I’ll be interested to see how those leaders develop as well as how I approach these situations in the future.

Pegasus Pisses Me Off

UnicornPegasus

In this week’s episode of the Gestalt IT Rundown, I jumped on my soapbox a bit regarding the latest Pegasus exploit. If you’re not familiar with Pegasus you should catch up with the latest news.

Pegasus is a toolkit designed by NSO Group from Israel. It’s designed for counterterrorism investigations. It’s essentially a piece of malware that can be dropped on a mobile phone through a series of unpatched exploits that allows you to create records of text messages, photos, and phone calls and send them to a location for analysis. On the surface it sounds like a tool that could be used to covertly gather intelligence on someone of interest and ensure that they’re known to law enforcement agencies so they can be stopped in the event of some kind of criminal activity.

Letting the Horses Out

If that’s where Pegasus stopped, I’d probably not care one way or the other. A tool used by law enforcement to figure out how to stop things that are tough to defend against. But because you’re reading this post you know that’s not where it stopped. Pegasus wasn’t merely a tool developed by intelligence agencies for targeted use. If I had to guess, I’d say the groundwork for it was laid when the creators did work in some intelligence capacity. Where things went off the rails was when they no longer did.

I’m sure that all of the development work on the tool that was done for the government they worked for stayed there. however, things like Pegasus evolve all the time. Exploits get patches. Avenues of installation get closed. And some smart targets figure out how to avoid getting caught or even how to detect that they’ve been compromised. That means that work has to continue for this to be effective in the future. And if the government isn’t paying for it who is?

If you guessed interested parties you’d be right! Pegasus is for sale for anyone that wants to buy it. I’m sure there are cursory checks done to ensure that people that aren’t supposed to be using it can’t buy it. But I also know that in those cases a few extra zeros at the end of a wire transfer can work wonders to alleviate those concerns.Whether or not it was supposed to be sold to everyone or just a select group of people it got out.

Here’s where my hackles get raised a bit. The best way to prevent a tool like this from escaping is to never have created it in the first place. Just like a biological or nuclear weapon, the only way to be sure it can never be used is to never have it. Weapons are a temptation. Bombs were built to be dropped. Pegasus was built to be installed somewhere. Sure, the original intentions were pure. This tool was designed to save lives. What happens when the intentions aren’t so pure? What happens when your enemies are terrorist but politicians with different views? You might scoff at the suggestion of using a counterterrorism tool to spy on your ideological opponents, but look around the world today and ask yourself if your opponents are so inclined.

Once Pegasus was more widely available I’m sure it became a very tempting way to eavesdrop on people you wanted to know more about. Journalist getting leaks from someone in your government? Just drop Pegasus on that phone and find out who it is. Annoying activist making the media hate you? Text him the Pegasus installer and dump his phone looking for incriminating evidence to shut him up. Suspect your girlfriend of being unfaithful? Pegasus can tell you for sure! See how quickly we went from “necessary evil to protect the people” to “petty personal reasons”?

The danger of the slippery slope is that once you’re on it you can’t stop. Pegasus may have saved some lives but it has undoubtedly cost many others too. It has been detected as far back as 2014. That means every source that has been compromised or every journalist killed doing their work could have been found out thanks to this tool. That’s an awful lot of unknowns to carry on your shoulders. I’m sure that NSO Group will protest and say that they never knowingly sold it to someone that used it for less-than-honorable purposes. Can they say for sure that their clients never shared it? Or that it was never stolen and used by the very people that it was designed to be deployed against?

Closing the Barn Door

The escalation of digital espionage is only going to increase. In the US we already have political leaders calling on manufacturers and developers to create special backdoors for law enforcement to use to detect criminals and arrest them as needed. This is along the same lines as Pegasus, just formalized and legislated. It’s a terrible idea. If the backdoor is created it will be misused. Count on that. Even if the people that developed it never intended to use it improperly someone without the same moral fortitude will eventually. Oppenheimer and Einstein may have regretted the development of nuclear weapons but you can believe that by 1983 the powers that held onto them weren’t so opposed to using them if the need should arise.

I’m also not so naive as to believe for an instant that the governments of the world are just going to agree to play nice and not developer these tools any longer. They represent a competitive advantage over their opponents and that’s not something they’re going to give up easily. The only thing holding them back is oversight and accountability to the people they protect.

What about commercial entities though? If governments are restrained by the people then businesses are only restrained by their stakeholders and shareholders. And those people only seem to care about making money. So if the best tool to do the thing appears and it can make them a fortune, would they forego they profits to take a stand against categorically evil behavior? Can you say for certain that would always be the case?


Tom’s Take

Governments may not ever stop making these weapons but perhaps it’s time for the private sector to stop. The best ways to keep the barn doors closed so the horses can’t get out is not to build doors in the first place. If you build a tool like Pegasus it will get out. If you sell it, even to the most elite clientele, someone you don’t want to have it will end up with it. It sounds like a pretty optimistic viewpoint for sure. So maybe the other solution is to have them install their tool on their own devices and send the keys to a random person. That way they will know they are being watched and that whomever is watching them can decide when and where to expose the things they don’t want known. And if that doesn’t scare them into no longer developing tools like this then nothing will.

Should We Embrace Points of Failure?

failure-pic-1

There was a tweet making the rounds this last week that gave me pause. Max Clark said that we should embrace single points of failure in the network. His post was an impassioned plea to networking rock stars out there to drop redundancy out of their networks and instead embrace these Single Points of Failure (SPoF). The main points Mr. Clark made boil down to a couple of major statements:

  1. Single-device networks are less complex and easier to manage and troubleshoot. Don’t have multiple devices when an all-in-one works better.
  2. Consumer-grade hardware is cheaper and easier to understand, therefore it’s better. Plus, if you need a backup you can just buy a second one and keep it on the shelf.

I’m sure more networking pros out there are practically bristling at these suggestions. Others may read through the original tweet and think this was a tongue-in-cheek post. Let’s look at the argument logically and understand why this has some merit but is ultimately flawed.

Missing Minutes Matter

I’m going to tackle the second point first. The idea that you can use cheaper gear and have cold standby equipment just sitting on the shelf is one that I’ve heard of many times in the past. Why pay more money to have a hot spare or a redundant device when you can just stock a spare part and swap it out when necessary? If your network design decisions are driven completely by cost then this is the most appealing thing you could probably do.

I once worked with a technology director that insisted that we forgo our usual configuration of RAID-5 with a hot spare drive in the servers we deployed. His logic was that the hot spare drive was spinning without actually doing anything. If something did go wrong it was just as easy to slip the spare drive in by taking it off the shelf and firing it up then instead of running the risk that the drive might fail in the server. His logic seemed reasonable enough but there was one variable that he wasn’t thinking about.

Time is always the deciding factor in redundancy planning. In the world of backup and disaster recovery they use the acronym RTO, which stands for Recovery Time Objective. Essentially, how long do you want your systems to be offline before the data is restored? Can you go days without getting your data back? Or do you need it back up and running within hours or even minutes? For some organizations the RTO could even be measured in mere seconds. Every RTO measurement adds additional complexity and cost.

If you can go days without your data then a less expensive tape solution is best because it is the cheapest per byte stored and lasts forever. If your RTO is minutes or less you need to add hardware that replicates changes or mirrors the data between sites to ensure there is always an available copy somewhere out there. Time is the deciding factor here, just as it is in the redundancy example above.

Can your network tolerate hours of downtime while you swap in a part from off the shelf? Remember that you’re going to need to copy the configuration over to it and ensure it’s back up and running. If it is a consumer-grade device there probably isn’t an easy way to console in and paste the config. Maybe you can upload a file from the web GUI but the odds are pretty good that you’re looking at downtime at least in the half-hour range if not more. If your office can deal with that then Max’s suggestions should work just fine.

For organizations that need to be back up and running in less than hours, you need to have fault tolerance in your network. Redundant paths for traffic or multiple devices to eliminate single points of failure are the only way to ensure that traffic keeps flowing in the event of a hardware failure. Sure, it’s more complicated to troubleshoot. But the time you spend making it work correctly is not time you’re going to spend copying configurations to a cold device while users and stakeholders are yelling at you to get things back online.

All-In-Wonder

Let’s look at the first point here. Single box solutions are better because they are simple to manage and give you everything you could need. Why buy a separate switch, firewall, and access point when you can get them all in one package? This is the small office / branch office model. SD-WAN has even started moving down this path for smaller deployments by pushing all the devices you need into one footprint.

It’s not unlike the TVs you can buy in the big box stores that have DVD players, VHS players, and even some streaming services built in. They’re easy to use because there are no extra wires to plug in and no additional remote controls to lose. Everything works from one central location and it’s simple to manage. The package is a great solution when you need to watch old VHS tapes or DVDs from your collection infrequently.

Of course, most people understand the drawbacks of this model. Those devices can break. They are much harder to repair when they’re all combined. Worse yet, if the DVD player breaks and you need to get it repaired you lose the TV completely during the process instead of just the DVD player. You also can’t upgrade the components individually. Want to trade out that DVD for a Blu-Ray player? You can’t unless you install one on its own. Want to keep those streaming apps up-to-date? Better hope the TV has enough memory to keep current. Event state-of-the-art streaming boxes will eventually be incapable of running the latest version of popular software.

All-in-one devices are best left to the edges of the network. They function well in offices with a dozen or so workers. If something goes bad on the device it’s easier to just swap the whole thing instead of trying to repair the individual parts. That same kind of mentality doesn’t work quite so well in a larger data center. The fact that most of these unified devices don’t take rack mounting ears or fit into a standard data center rack should be a big hint that they aren’t designed for use in a place that keeps the networking pieces off of someone’s desk.


Tom’s Take

I smiled a bit when I read the tweet that started this whole post. I’m sure that the networks that Max has worked on work much better with consumer all-in-one devices. Simple configurations and cold spares are a perfectly acceptable solution for law offices or tag agencies or other places that don’t measure their downtime in thousands of dollars per second. I’m not saying he’s wrong. I’m saying that his solution doesn’t work everywhere. You can’t run the core of an ISP with some SMB switches. You should run your three-person law office with a Cat6500. You need to decide what factors are the most important for you. Don’t embrace failure without thought. Figure out how tolerant you or your customers are of failure and design around it as best you can. Once you can do that you’ll have a much better idea of how to build your network with the fewest points of failure.

VARs See You As Technical Debt

I’ve worked for a Value Added Reseller (VAR) in the past and it was a good run of my career before I started working at Tech Field Day. The market was already changing eight years ago when I got out of the game. With the advent of the pandemic that’s especially true today. Quite a few of my friends say they’re feeling the pressure from their VAR employer to stretch beyond what they’re accustomed to doing or outright being treated in such a way as to be forced out or leaving on their own. They tell me they can’t quite understand why that’s happening. After some thought on the matter I think I know. Because you represent debt they need to retire.

Skill Up

We don’t start our careers knowing everything we need to know to make it. The industry spends a lot of time talking about careers and skill paths and getting your legs under you. Networking people need to learn Cisco or Juniper or whatever configuration language makes the most sense for them. Wireless people need to learn how to do site surveys and configure access points. Server people need to learn operating systems and hypervisors. We start accumulating skills to land jobs to earn money and hopefully learn more important skills to benefit our careers.

Who benefits from that learning though? You certainly do because you gain new ways to further your career. But your VAR gains value as well because they’re selling your skills. The “value added” part is you. When you configure a device or deploy a network or design a system you’re adding value through your skills. That’s what the VAR is charging for. Your skills are their business model. No VAR stays in business just reselling hardware.

Accumulating skills is the name of the game. Those skills lead to new roles and more responsibility. Those new roles lead to more money. Perhaps that means moving on to new companies looking to hire someone that has your particular expertise in an area. That’s a part of the game too, especially for VARs. And that’s where the whole debt mess starts.

Double Down on Debt

Your skills are valuable. They’re also debt. They represent a cost in time, money, and resources. The investment that your VAR makes in you is a calculated return on that debt. If your company primarily deploys Cisco networks then the training you get to install and configure Cisco switches is a return on your VAR being able to hire you out to do that skill. Being able to install and configure Juniper switches isn’t a valuable skill set for them unless they move into a new line of business.

People are no different. We acquire skills that suit us for a time that we may or may not use forever. It’s like riding a bike. We use it a lot when we’re young. We stop using it when we start to drive. We may start again when we need to use a bike for college or for living in a large city or if we pick up cycling or mountain biking as a sport. However, the bike riding skill is always there. It is a sunk cost for us because we acquired it and keep it with us.

For a VAR, your skill is not a sunk cost. It’s a graph of keeping the amount of billable hours you contribute above the line of debt that you create to the company. If you spend 85% of your time installing Cisco switches you are well above the debt line to the company. But if your company stops installing so many switches your value starts to fall as well. It could be that the technology is old and no one is buying it. It could be that companies have shifted the way they do business and need different resources and technology. It could be that a new partnership has created competition inside your organization.

No one wants to the be a last buggy whip manufacturer. VARs thrive on attacking markets that are hot with huge potential for profits. When a skill set becomes a commodity VARs are competing on pricing they can’t always win. That drives them to investigate new markets to offer to the customer base. In order to deliver those new technologies and solutions they need skilled people to install and configure them. The easiest solution is to acquire talent to make that happen. As above, VARs are always willing to pay top dollar to professionals with the specific skill sets they need. Bringing someone in to do that new line of business means they’re producing from Day One and keeping their value above the debt line of their salary.

The other way that VARs compete in these new markets is by training existing professionals on the new technology. Everyone that has ever worked in a VAR knows of the people that get tasked with learning how to deploy new storage systems, new network equipment, and even entirely new solutions that customers are asking for. I know I was that person at my old VAR. If it needed to be learned I was the one to do it first. I jumped in to deploying iSCSI storage, wireless access points, and even VoIP phone systems. Each time I had to spend time learning those new skills and adding them to my existing set. It was a cheaper method in the short term than bringing entirely new talent on board.

Get Out of Town

The friction in the training approach comes when it’s time to value your employees and their skill sets. If I’m getting paid to deploy Cisco switches and now my company wants me to learn how to install Palo Alto firewalls then I’m going to eventually get a raise or a new role to cover this expanded skill set. And rarely, if ever, do employee salaries get adjusted downward to compensate for old skills that are no longer relevant being supplanted by new marketable skills. Suddenly all those technologies I spent so much time learning are technical debt my VAR is paying for.

VARs need to be able to jump into new lines of business in order to survive. And that sometimes means shedding technical debt. If you’re a highly paid employee that earns twice as much as someone that has the specific skill set your VAR needs for a new project then your value to the at this current moment is likely much closer to the negative line of skills versus debt. You may have more experience or more familiarity with the process but that doesn’t translate as well into real value. If it did contractors wouldn’t be as well compensated as they are.

Now your VAR has a choice: keep paying you a lot and investing in their technical debt or bring on someone new that moves more closely with their new lines of business and start the escalator ride all over again. Unless you’re an exceptional employee or you are moved into a management role that usually means you’re let go or encourage to find another role somewhere. Maybe you get lucky and another VAR needs exactly what you offer and they’re willing to pay to get it. No matter what, the VAR is ridding themselves of technical debt. It should be no different than retiring an old laptop or installing new software to do help desk ticketing. But because it’s a person with a life and a family it feels wrong.

Rise Above

Is there an answer to this problem? If there is I don’t think we’ve found it yet. Obviously the solution would be to keep people on staff and pay them what their skill set is worth to the company. But that could entail retraining or readjustment in compensation that people aren’t always willing to do. VARs aren’t going to pay hefty salaries for skills that aren’t making them money. Other VARs may want to pay you for your skills but that’s not always a guarantee, especially if your skill set is extremely specific.

The other possibility is more akin to the contractor system, where you’re only hired for your skills for the period of time that they are needed. In theory that works very well. In practice the challenges of capital asset acquisition and personal benefits make contracting full-time almost as much of a hassle as changing jobs every few years chasing a bigger paycheck or a company that values your skills. There isn’t a clear-cut answer. Part of that reasoning is because the system works just fine the way it is. Why fix it if it’s not broken? It would take a massive shift in IT toward a new paradigm to force the kind of soul searching necessary to change the way VARs handle their staff. Cloud is close. So too is DevOps and programmatic IT. But for the kind of change we’re talking about it’s going to take something even bigger than those two things combined.


Tom’s Take

After reading this I’m sure half of you are scared to death and swear you will never work for a VAR. That’s a bit short-sighted. Remember that they’re a great source of training and experience. Customer networks stay fairly static and only require specific kinds of maintenance from time to time outside of deployments. If you want to hone your skills on a variety of technologies and get very good at troubleshooting then VAR life is absolutely where you need to be. Just remember that you are a resource with a value and a burden. Despite the mantra of being a “family” or other feel-good nonsense you will eventually reach the point of being the uncle that constantly incurs debt for very little return. Every family shuns those kinds of members. Make sure you know your value and how you can contribute. If that’s not possible where you are now then make sure it is wherever you land with whatever skills you need.

Friday Thoughts on Going Back To the Office

EmptyOffice

We’re halfway through 2021 and it’s been going better than last year. Technology seems to be rebounding and we’re seeing companies trying to find ways to get employees to come back into the office. Of course, that is being met head on by the desire to not go back at all and continue to do the job from home that has been done over the past year. Something is going to have to give and I don’t know what that might be.

  • Working from home is comfortable for sure. And the lack of schedule means that people are unknowingly putting in hours beyond what they normally would at the office. At least in the office you can walk away from your desk at the end of the day.
  • Unlimited PTO and flexible work schedules sound great in theory. Except not tracking your PTO hours also means you don’t accrue them. You don’t get paid for time you don’t take off. And a flexible work schedule sounds great in theory but reality says that you’re not likely to get much support if you suddenly decide you want to work noon to 10pm Hawaiian time. Flexible really means “work longer than normal”.
  • The office is filled with tech that you don’t have to maintain. That means when you’re there and the Internet goes down you don’t have to spend your time trying to fix it and keep up with your workload. IT departments have a role to play just like you do. Only their role ends at the office or with confirming that your company-issued equipment is working properly. If it’s your provider or your own personal gear that’s a different story.

It may sound like I’m advocating for you to go back into the office and the nine-to-five grind all over again. That’s not quite the point though. What I’m advocating for is figuring out what’s the best way to get your job done. There are numerous stories in the news about companies asking their workers to return, hearing the refusal, and then making it a mandate to get back to their office to do some part of their job that can’t be done remotely.

Fully Tasked with Partial Credit

The refrain of “I’ve been working remotely for the last year” is a pretty common answer to the call for coming back to the office. But have you been doing 100% of your job remotely? Has every aspect of what you do been able to be completed away from your desk? And if it has, are you doing 100% of the work you were doing in January 2020? I think a lot of the remote work that we’ve seen as of late is a consequence of our jobs needing to be done away from the office but also a reduction in things that have to be done in person. We are able to do our jobs from our house because we’ve reduced or eliminated the things that have to be done face-to-face.

I can say for sure that my role, even having been remote in the past, isn’t the same as it was in early 2020. I used to be on airplanes at least twice a month. I’m finally getting back on one for the first time in over a year next week. The idea of almost foreign to me at this point. And it’s because we knew that there were things that were going to need to change at work due to our inability to do them in person. So while I can say that I can do my job entirely from my house right now it’s only because the part of my job that requires me to get on an airplane all the time hasn’t fully come back into force yet.

This rings even more true for companies that have specific in-person needs. Apple is making news because they’re still pushing to have their employees come back to Cupertino where necessary. That may sound draconian to some until you remember that there is a lot work work on hardware prototypes and development that happens in that building. Those aren’t really things you can do at home. And given how tightly Apple holds that information there’s no way they’re going to allow it to be outside their walls unless absolutely necessary. I don’t know what the right answer is for Apple or for hardware companies in general but the extremes of both sides aren’t likely to get their way entirely.

Compromised Compromises

Several of my friends have remarked that they hate the phrase “new normal” when referring to how society has changed over the past year. The idea that the things we’re doing are going to be permanent parts of our lives from here on out. Yet, for all the grousing about wearing masks or supply shortages or lockdowns when the situation benefits us we’re happy to make it permanent.

The working from home mandates we’ve seen should be examined just like those other measures that aren’t “normal”. It was an emergency measure designed to keep the doors open as long as possible until we could pull through everything going on. Now that it’s time to look at those decisions again people are chafing because this is the one thing they actually like out of the whole pandemic response.

Compromise doesn’t work like that. You don’t get to pick and choose the things you get to have your way on. Instead, you need to figure out what makes the most sense and implement the things that are best for those all around. If that means going back into the office two days a week to do things that can only be accomplished there then maybe that’s what needs to happen. Granted there are still ways to find common ground and negotiate. Maybe you can work from home every other Friday. Or you can adjust your schedule in other ways. But holding out hope that the situation will continue to benefit you as it is right now without any form of further compromise isn’t a likely scenario.


Tom’s Take

I know it sounds a lot like “doom and gloom” for those that want to continue to work from home all the time. As someone that has been doing it for a while I don’t know if I could ever go back into an office full-time. But I also know that when the time comes soon for me to get back to my “office” on an airplane that it’s going to need to happen. Because we can’t get back to the old normal without getting back to the way things were done before. There very well could be a paradigm shift on the horizon for working in offices and how our jobs can be changed to not require in-person work. But I don’t think we’re going to see that happen directly after what we’ve all experienced. That road has more twists and turns yet to come whether it’s headed back to the office or all the way home.

Putting the FUN Back in Productivity

It’s not a secret that it’s hard to get stuff done. Procrastination is practically a super power for me. I’ve tried so many methods and systems to keep myself on track over the years that I should probably start a review site. Sadly, the battle of my executive function being on constant vacation and the inability to get organized saps a lot of my ability to execute. It’s gotten to the point where I’ve finally realized that I need to start tricking my brain into getting things done.

Any reputable researcher will tell you that dealing with neurodivergent behaviors like ADHD is all about understanding the reasons why you do the things you do. I know what needs to be done. I just don’t want to do it. Worse yet, anything that I can do to avoid working on something is going to capture my attention because I’d rather be doing something unproductive as opposed to something I don’t like. This can manifest itself in strange ways like preferring to do the dishes instead of writing a blog post or mowing the yard instead of practicing a presentation.

Not DisFUNctional

It’s taken me a while but I’ve finally come up with a system that makes it easier to get me into a rhythm to get things done. And because you wouldn’t remember it unless I made it spell out some memorable word, we’re going to call it the FUN System. Because more than three points would likely have gotten lost anyway.

F – Fake It! – It’s going to sound silly but the first step in convincing yourself to do something is often to lie to yourself about how much better it will be when you get it done. Your brain has convinced itself that this is bad and you shouldn’t be doing it. So in order to get it done you’re going to have to convince it otherwise.

We do this all the time to others. Telling kids that veggies taste good. Telling our friends that they should do something for us so they feel better. Selling pretty much anything to anyone. It’s all about convincing someone skeptical to do something they don’t want to do. Your brain is no different. You need to convince yourself to get the thing done. Maybe you promise yourself a reward or some extra downtime or something that just gets you moving. You don’t even have to keep the promise. The key is to use it to overcome the objections your brain has already but up. Fake it however you need to in order to make something happen.

U -Understand It – This one is especially powerful for me. I love learning. Like a lot. Enough that I can often convince myself to get a bigger task accomplished more quickly by learning about it. Understanding the details or the process or figuring out how to make it all work. I binge watch documentaries on Youtube and enjoy reading up on random things to learn more about how they work or why they are the way they are.

This extends to things beyond emails and simple tasks for me. Cooking was something that was easier to accomplish and do more often when I learned how it all works together. Why 350 degrees is the magic baking temperature, for example. Or how different spices can create different styles of flavors. It’s all about learning the ins-and-outs of what you’re trying to do.

The key here is not to fall down the hole of learning more about what you’re trying to do than actually doing it. It’s very easy to get paralyzed by over learning and just sitting there going over the details again and again instead of putting them into practice. Using the above example you may have to tell yourself you can come back to the investigation after you’ve tried it once or twice. Ensure that you use the desire to learn as the driver for getting something accomplished before you procrastinate your day away.

N – Next On The List – The third way I tell myself to get things done is to move them down on the list behind an easy task. It’s a cruel trick that relies on momentum. I tell myself that I got the little easy thing done so I might as well tackle the bigger thing. And it works more often than you might think.

The brain only needs a little dopamine from a sense of accomplishment to keep going. It’s the idea that you’re being productive. So if you need to write something long then put it after a short response email. If you’re dreading a phone call then do it after you’ve tidied your desk or taken out the trash. Doing something small will help you get prepared for the big task and ensure that you can carry forward that little extra push to get through it. As a bonus, the sense of accomplishment from that extra big task will carry forward to a couple others! It’s a like a productivity feedback loop.


Tom’s Take

The usual disclaimers apply here. This is my method and it may not work for you. You have to learn how your brain works and find ways to keep it moving and working. There are other things that help create the sense of accomplishment, like routine or the enjoyment of results. But in the long run the key is finding a way to get your brain out of the funk of not wanting to do stuff. My FUN System helps me and maybe it will help you too. Try it out if you’re struggling and use it as a basis to make your own fun.

Don’t OutSMART Your Goals

290C1DEE-0D66-432D-839A-C3C4B79B5F6D

I read a piece on LifeHacker yesterday that made me shake my head a bit. I’m sure the title SMART Goals Are Overrated was designed to get people to click on it, so from that perspective it succeeded. Wading into the discourse there was an outline of how SMART goals were originally designed for managers to give tasks to employees and how SMART doesn’t fit every goal you might want to set, especially personal aspirational ones. Since I have a lot of experience with using SMART goals both for myself and for others I wanted to give some perspective on why SMART may not be the best way to go for everything but you’re a fool if you don’t at least use it as a measuring tool.

SMRT, Eh?

As a recap, SMART is an acronym for the five key things you need to apply to your goal:

  • S – Specific (what are you going to do)
  • M – Measurable (how will you know when you’ve succeeded)
  • A – Attainable or Assignable (can you or the person you’ve selected do this thing)
  • R – Relevant or Relatable (is this goal appropriate for me or for the person doing it)
  • T – Timely or Time-Based (when are you going to accomplish this goal)

Aside from the obvious reason that the originators really wanted their system to spell “smart”, what does all this mean? Well, when we teach SMART goals at Wood Badge, we ask people to envision something they want to do in the next year. Maybe it’s taking a vacation. Or perhaps it’s another project they want to get done around the house. Once they’ve picked it out, we ask them to think about how they’re going to accomplish it. This second exercise is where the application of the ideas behind SMART goals comes into play.

In an enterprise IT sense we don’t do projects with no planning. At least, I really hope we don’t. We need to understand what we’re doing and why and how we’re going to get it done and when. We already have those constraints put in place when we begin the process. SMART just formalizes them into something memorable. Take an IDC switch upgrade for example:

  • Specific – We are going to upgrade the switches in the gym IDF
  • Measurable – We’re done when the switches are installed, cabled, and configured properly
  • Attainable – This is easy to accomplish and the team has done many before
  • Relevant – The networking team is doing the work, not the storage team or the accounting department. Relevant to our needs because we have more bandwidth in the gym during basketball games and we need to increase the amount of concurrent users and devices
  • Timely – We’re doing the upgrade next Friday when everyone is out of school, which is two weeks before basketball season starts to make sure we have everything ready to go with minimal disruptions. The switches are scheduled to arrive tomorrow.

See? SMART helps us plan the whole thing. Specific keeps us from setting goals like “make things faster” and forces us to be very specific. That goes hand-in-hand with Measurable, which also prevents scope creep. We’re done when we’ve met the measurable case. Setting more measurable things will help your projects work much better.

Attainable just means we’re not setting goals we can’t reach. Switching out one IDC at a time is better than trying to reconfigure the whole network in a weekend. Having been roped into unattainable projects before I really wish more of them had this condition figured out up front. Relevant helps answer why we need it or who is relates to. The accounting department may want the fastest access to the data center or the cloud but if they want us to pay thousands of dollars a month for a circuit only they can use it’s going to be hard to meet the Relevant section of the goal. Timely gives you a date to shoot for for completion. That keeps your project from sitting on the “in process” part of your kanban board until the end of time itself.

Don’t Dumb It Down

LifeHacker’s writer, Beth Skwarecki, says that SMART is deceptive because it creates a bait-and-switch mentality of setting pass-fail goals with a deadline. There’s no inherent motivation to get things done and no reason to set goals that require you to stretch your limits because you don’t want to fail. Looking at goal setting in a vacuum would validate her reasoning. However, looking at SMART as the only source of input into the goal setting process is also setting yourself up for failure.

It’s true that SMART encourages you to set deadlines and spell out what you’re doing. That’s because many people struggle with the process of actually defining goals. Like vacation planning they have the big picture of sitting on the beach clearly in mind. They stumble when it comes to booking hotels and rental cars and when to buy the airline tickets and how they’re going to get to the beach and what they need to bring when they get there and so many other things not even on their radar. SMART gives them a framework for figuring out how to make it all work.

SMART isn’t a motivator. It doesn’t make you want to do something. Instead, it gives you a way to measure progress or force yourself to understand when things need to happen. In the article, Beth says that it’s bad if you set a time goal for yourself and then you procrastinate until the week before because there is no inherent drive to work on things in a timely manner. I’d argue that has nothing to do with the SMART framework. Sure, you set yourself a goal to be finished. But we do that all the time.

We want to be able to run a 5k race by the time of the race in the fall. We want to go to Disneyland on our vacation in July. We want to buy a house before we turn 30. All of these goals have a Timely component. Maybe you don’t have a Gantt chart breaking down every minute of the planning process yet. That doesn’t mean putting a time on it doesn’t help you do things better. When I was working on my SMART goal project back in 2017 I had a whiteboard on my desk with deadlines and checkpoints to make sure I was getting things done. The motivation to finish on time came from me setting smaller, attainable goals and not big red circles on the calendar looming on the horizon.

The last thing I’ll say about the article is that SMART goals aren’t supposed to push you to challenge yourself. Beth says that SMART encourages you to do things that are attainable so you don’t fail. I’d argue that the purpose of SMART is to help you set attainable goals and then help you reflect on what you could be doing better or more often. Yes, everyone wants to succeed as often as possible. Constant failure is discouraging. You also need to make sure you aren’t just setting targets to knock down for the sake of knocking them over.

Goals that are set without a check-in aren’t really helping you. Projects with SMART goals should be living documents that get updated frequently. Are you sailing through your running goals? Time to reset your yardstick and stretch yourself a bit. Run a faster time or go for a longer distance. Are you having struggles with your project because things aren’t coming together? Sit down and be honest with yourself and figure out how to make the most out of what you have. Maybe it’s not replacing every AP in the office but just the ones in the employee areas in the main building. If you’re not adjusting your goals along the way based on the feedback you get from the process then you’re going to fall into the trap of making things too easy to fail or too hard to succeed.


Tom’s Take

I’m a big fan of using the right tools for the job. Don’t use screwdrivers as chisels. Don’t use a flamethrower to light cigars. And don’t forget that you can find other ways to make things work for you. SMART isn’t the superior system for every situation out there. There are times when it’s maddening and doesn’t properly fit. However, running your projects and goals through the SMART filter will usually help you identify where you need to tighten up language or timelines. It certainly can’t hurt. And if it’s not working at all then try to find a better way to make it work for you. Use a tool or framework instead of just thinking you’ll do it your own way. That’s the kind of thinking that leads smart people into making dumb decisions.