Lync 2010 Edge Server Installation Guide
Firstly we will look at the Lync 2010 Edge Deployment Recommendations:
- Do not join Edge servers to the domain
- Use MS Lync Planning tool to generate an XLS-based topology document.
- Use Topology builder to generate a file that will be exported to the Edge Server.
- Edge server role cannot be combined with any other roles.
- MS does NOT support NAT for traffic to or from the Edge internal interface, but for the Edge external interface is allowed.
Lync 2010 Edge Server Certificate Requirements:
- Certificate for Edge server can be issued by public CA or internal CA.
- Edge server internal interface certificate can be issued by internal CA.
- Edge server external interface certificate must be issued by public CA (go Daddy,DigiCert).
- Public Certificate is used for the Access Edge service, the Web Conferencing Edge service, and for AV authentication.
Lync 2010 Edge Server Firewall and Port Requirements:
|
Federation with
|
Feature
|
TCP/443
|
UDP/3478
|
RTP/UDP 50.000-59,999K
|
RTP/TCP 50,000-59,999K
|
|---|---|---|---|---|---|
|
Windows Live Messenger 2011
|
Point to Point
Audio/Video (A/V)
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Lync Server 2010
|
Lync Server 2010
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Lync Server 2010
|
Application sharing/desktop sharing
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Lync Server 2010
|
File transfer
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Office Communications Server 2007 R2
|
A/V
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Office Communications Server 2007 R2
|
Desktop sharing
|
Open inbound
|
Open inbound
Open outbound
|
Do not open in either direction
|
Open outbound
|
|
Office Communications Server 2007 R2
|
File transfer
|
N/A
|
N/A
|
N/A
|
N/A
|
|
Office Communications Server 2007
|
A/V
|
Open inbound
|
Open inbound
|
Open inbound
Open outbound
|
Open inbound
Open outbound
|
|
Office Communications Server 2007
|
Desktop sharing
|
N/A
|
N/A
|
N/A
|
N/A
|
|
Office Communications Server 2007
|
File transfer
|
N/A
|
N/A
|
N/A
|
N/A
|
Lync 2010 Edge Server Installation Walk-Through:
- Configure NICs on Edge Server
1. There must be two NICs, Internal NIC which is used to communicate with front-end servers and External NIC which is in the DMZ
2. Configure External NIC with a gateway address.
3. Configure Internal NIC without a gateway address.
4. Create static route to all internal networks. (Use route add command)
- Install pre-requisites:
- Run Windows Powershell as Administrator
- Import-Module ServerManager
- Add-WindowsFeature NET-Framework-Core,Telnet-Client
- Copy Topology Export to Edge Server
1. Export topology by running “Export-CsConfiguration –FileName c:\edge.zip”
2. Copy it to Edge Server - Install Lync 2010 Edge Server
Run the Lync Deployment Wizard and provide exported file in step #2 (you will be prompted for the pre-requisites) - Apply Certificates
Use Deployment Wizard to Request and Install certificates - Start Lync Services from Deployment Wizard
Smarter Together 