If a direct connection is not available the mediation

Info icon This preview shows pages 50–52. Sign up to view the full content.

View Full Document Right Arrow Icon
If a direct connection is not available, the Mediation Server opens a connection with the A/V Access Edge service, which acts as a media relay for transporting audio and video content across corporate NATs and firewalls. For details, see Media Traversal . The important point about this transaction is that the Mediation Server must open a connection to the A/V Access Edge service and request the media before it is allowed to cross the corporate firewall. 46
Image of page 50

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Microsoft Lync Server 2010 Security Guide Media flowing both directions between the Mediation Server and internal Microsoft Lync Server 2010 servers and clients are encrypted using SRTP in the default configuration where both the Mediation Server and internal servers support and use encryption. Best Practices Organizations that rely on Internet Protocol security (IPsec) for packet security are strongly advised to create an exception on the audio port range configured, if they are to deploy Enterprise Voice. The security negotiations required by IPsec work fine for normal UDP or TCP connections, but they can slow down call setup to unacceptable levels. Assigning Call Privileges for Lync Server 2010 Enterprise Voice provides a simple mechanism for assigning or restricting calling privileges for internal users. You can define a single voice policy for all users in your organization or multiple voice policies to define call privileges for different individuals and groups. You can define as many policies as you like. You can even define a policy but not assign it to anyone. An Enterprise Voice policy is a named set of Enterprise Voice phone usages. Phone usages are simply labels that you create to identify particular types of calls; for example, Local calls only or Local + Long Distance. You can create as many phone usages as you like. When you create an Enterprise Voice policy, you add the phone usages you want to include in the policy and give the collection a name. You also associate phone usages with Enterprise Voice outbound call routes that you have defined. By assigning phone usage records to both user policies and outbound call routes, you indicate which users are allowed to make calls that use particular routes. For each voice policy, the phone usage records specified in the policy determine all the authorized routes available to a user. The phone usage records in the policy and the phone number the user dials determine which route to use for a call. When a user places a call, Lync Server 2010 matches the dialed number with a route in the authorized route list. If a matching route is found, the call is made. If no matching route is found, the call is not made. Exchange Unified Messaging Security Levels Microsoft Lync Server 2010 uses Microsoft Exchange Server 2010, Exchange Server 2010 with Service Pack 1 (SP1), and Microsoft Exchange Server 2007 with Service Pack 2 (SP2) Unified Messaging (UM) to provide voice mail, missed call notification, and auto-attendant services. An Exchange UM dial plan supports three different security levels: Unsecured, SIPSecured, and Secured. You configure security levels by means of the UM dial plan’s VoipSecurity parameter.
Image of page 51
Image of page 52
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern