Resolving the firewall politics problem

A few months ago, I was sitting in a meeting with the IT team from one of the largest bank in Africa, while discussing their pains, they mentioned that one of the most aggravating issues they have, is launching a new external facing application. The problem, they told us is the security team, "we need to connect our application front-end which resides in the DMZ to the application server which resides in the LAN, and they will not let us open any new ports in the LAN firewall…".


