Each edge server role as well as the reverse proxy

Info icon This preview shows pages 33–35. Sign up to view the full content.

View Full Document Right Arrow Icon
Each edge server role, as well as the reverse proxy, has an external FQDN. Each edge server also has an internal FQDN that is explicitly defined for each Lync Server 2010 Edge Server and each Edge Server pool. Each of these FQDNs corresponds to a separate network adapter card configured on each edge server and reverse proxy. Traffic arriving at the external edge can only travel to the configured internal FQDN of the internal server. Traffic from an internal server or pool to the internal edge of an Edge Server follows a route that you define for that server or pool. The global settings for each Standard Edition server and 29
Image of page 33

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Microsoft Lync Server 2010 Security Guide Enterprise Edition Front End pool include the Edge Servers to which outbound traffic from those internal servers and pools is to be routed. Traffic from an external source to an internal server or pool travels to a specified next hop. The recommended next hop for an edge server is a Lync Server Director. The Director does not host users but, as a member of an Active Directory domain, it has access to Active Directory Domain Services for purposes of authenticating remote users and routing traffic to the appropriate server or Enterprise pool. By authenticating inbound SIP traffic from remote users, the Director helps insulate home servers and Enterprise pools from potentially unauthenticated traffic, while relieving them of the overhead of performing authentication. A Director is optional but is strongly recommended in all topologies that involve connections across the Internet, especially those that support external users. For details about deploying and configuring support for external user access, including Edge Servers and Directors, see the Deploying Edge Servers documentation. Note: Directors can be configured behind a load balancer if your requirements demand high availability. Media Traversal The A/V Edge service provides a single, trusted connection point for media traversal in and out of the enterprise. A/V Edge Service Port Requirements The A/V Edge requirements for ports and protocol have changed in Microsoft Lync Server 2010. Depending upon your requirements for federation with partner infrastructures and the configuration of your Edge Servers, the following ports should be considered: UDP 3478 TCP 443 UDP 50,000–59,999 TCP 50,000–59,999 For details about port configuration and network address translation (NAT) requirements, see Determining External A/V Firewall and Port Requirements in the Planning documentation. Lync Server 2010 implements the Interactive Connectivity Establishment (ICE) protocol for negotiating media connections with parties inside a NAT environment. The specific implementation details are found in the Microsoft Office Protocols Documents at http://go.microsoft.com/fwlink/?LinkId=145173 .
Image of page 34
Image of page 35
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern