[gvickers]

The most difficult project I have solved (just finishing up the implementation) is developing a monitoring solution for a bunch of legacy telephone PBX's.

Essentially, the bureaucratic overhead for getting a bunch of companies to open their firewalls to us was unfeasible. Long story short, I ended up hijacking the SSL/VPN generated by a running JVM to forward a bunch of SNMP/OSSI-polling traffic to our api.

At the end, after implementing the above, I found out about a service port for outgoing only traffic offered to business partners. That was much easier to use, only requiring nginx to split off a certain sub-path of SSL traffic + business partner status.

I am still proud of the original hack, although brittle and ugly it was very exciting to get working.