:: infotechGuyz.com ::
> For the IT community by the IT community

ZHire Account Provisioning App
Automate AD / Exchange / Lync
accounts. Free Download

• BlackBerry Server (BES)
• Excel Macro/VBA
• Exchange 2007
• Exchange 2010
• Lync 2010
• Scripting/Command-line
• SQL Server 2008
• SQL Server 2012
• Team Foundation Server
• VMware
• Windows 7
• Windows 8
• Windows Server 2008
• Windows Server 8

Lync 2010 Edge Server Installation Guide

 

 

Edge Server allows external users and remote employees to communicate with users in the internal network. Prior to deploying your Lync 2010 Edge Server in your DMZ, you must already have deployed your internal infrastructure, including a Front End pool or a Standard Edition server. Please note that this article only applies to new deployments.

 

Deployment Overview:

• Generate Edge Topology
  Run topology builder to configure Edge server configuration and to create and publish topology. You must use lync management shell to export the file.

• Edge Server Basic Configuration
  1. Configure basic settings; IP address, firewall, AV, etc.
  2. Obtain certificate from External or Internal CA.

• Configure ISA/TMG (optional)

• Deploy Edge Servers
  1. Install prereqs using servermanager.
  2. Copy exported file from topology builder to Edge Servers (from step #1).
  3. Install Lync Server 2010 Edge role.
  4. Apply certificates.

• Configure External Access
  Configure Remote users access, Federation, External IM usingsLync 2010 Control Panel.

• Verify Edge Server Installation is Completed
  Ensure that “RTCUniversalServerAdmins” group account that is assigned to the CSAdministrator role.

 

 

Lync 2010 Edge Deployment Recommendations:

• Do not join Edge servers to the domain (Just like Exchange 2010 Edge servers)
• Use MS Planning tool to generate an XLS-based topology document.
• Use Topology builder to generate a file that will be exported to the Edge Server.
• Edge server role cannot be combined with any other roles.
• MS does NOT support NAT for traffic to or from the Edge internal interface, but for the Edge external interface is allowed.

 

 

Lync 2010 Edge Server Certificate Requirements:

• Certificate for Edge server can be issued by public CA or internal CA.
• Edge server internal interface certificate can be issued by internal CA.
• Edge server external interface certificate must be issued by public CA (go Daddy,DigiCert).
• Public Certificate is used for the Access Edge service, the Web Conferencing Edge service, and for AV authentication.

 

 

Lync 2010 Edge Server hardware recommendations:

Hardware Component	Minimum Requirement
CPU	One of the following: 64-bit dual processor, quad-core, 2.0 GHz or higher 64-bit 4-way processor, dual-core, 2.0 GHz or higher
Memory	12 GB recommended
Disk	Local storage with at least 30 GB free disk space
Network	Two interfaces required, either one 2-port 1 Gbps NIC or two 1-port 1 Gbps NICs.

 

 

 

Lync 2010 Edge Server Firewall and Port Requirements:

Federation with	Feature	TCP/443	UDP/3478	RTP/UDP 50.000-59,999K	RTP/TCP 50,000-59,999K
Windows Live Messenger 2011	Point to Point Audio/Video (A/V)	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Lync Server 2010	Lync Server 2010	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Lync Server 2010	Application sharing/desktop sharing	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Lync Server 2010	File transfer	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Office Communications Server 2007 R2	A/V	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Office Communications Server 2007 R2	Desktop sharing	Open inbound	Open inbound Open outbound	Do not open in either direction	Open outbound
Office Communications Server 2007 R2	File transfer	N/A	N/A	N/A	N/A
Office Communications Server 2007	A/V	Open inbound	Open inbound	Open inbound Open outbound	Open inbound Open outbound
Office Communications Server 2007	Desktop sharing	N/A	N/A	N/A	N/A
Office Communications Server 2007	File transfer	N/A	N/A	N/A	N/A

 

 

 

Lync 2010 Edge Server Installation Walk-Through:

• Configure NICs on Edge Server
  1. There must be two NICs, Internal NIC which is used to communicate with front-end servers and External NIC which is in the DMZ
  2. Configure External NIC with a gateway address.
  3. Configure Internal NIC without a gateway address.
  4. Create static route to all internal networks. (Use route add command)

• Copy Topology Export to Edge Server
  1. Export topology by running “Export-CsConfiguration –FileName c:\edgeexport.zip”
  2. Copy it to Edge Server

• Install Lync 2010 Edge Server
  Run the Lync Deployment Wizard and provide exported file in step #2.

• Apply Certificates
  Use Deployment Wizard to Request and Install certificates

• Start Lync Services from Deployment Wizard