- Adam's UC Blog
- Всё о Microsoft UC
- BriComp Unified Communications
- Confused Amused
- David's UC Space
- Dustin's Tech Notes
- EHLO World
- Elan Shudnow's Blog
- I'm a UC Blog
- Infrastructure Help
- Inside Lync
- Inside OCS
- Jeff Schertz's Blog
- Justin Morris on UC
- LeeDesmond's blog
- Lync Developement
- Lync'd Up
- Martin Lidholm's Blog
- Mastering Lync Blog
- Matt Landis Windows PBX & UC Report
- Microsoft UC and other stuff ...
- Microsoft UC Made Easy
- Mike Stacy's Blog
- Modality Systems
- msunified.net
- The Cloud Mouth
- Thomas@UC (Microsoft LYNC)
- TsooRaD
- Ultimate Communications
- Unified Communications.nl
- Unified Communications with Microsoft
- VOIPNorm's Unified Communications Blog
Lync Blog Roll
Below is a blog list of many of my fellow Lync'ers out there. I encourage you to check them out, as they have a wealth of information you can't find anywhere else, including TechNet.
Subscribe to:
Posts (Atom)
Hi Ken,
ReplyDeleteI studied your article (Configuring Lync for External Access)and now I'm trying to publish link services for my external users.
Please consider this scenario : (See the link)
http://www.mediafire.com/view/jrvesia5be24fha/Lync_IP_Diag.jpg
And Suppose that we have test.local as internal domain and test.com as external domain (Internet).
I use split-brain DNS solution and create test.com zone beside the test.local zone in the Internal DNS server.
I add test.com as default SIP domain for all users. In internal network users can login to their lync clients using test.com (because of split-brain DNS configs. In internal test.com zone, Lync.test.com points to local IP address of Lync server (FEPool)) And in the external DNS, we have test.com zone and I create these records :
FQDN IP Address
Meet.Test.com 1.1.1.5
Dialin.Test.com 1.1.1.5
Lync.Test.com 1.1.1.5
Lyncdiscover.Test.com 1.1.1.5
SIP.Test.com 1.1.1.2
WC.Test.com 1.1.1.3
AV.Test.com 1.1.1.4
My external DNS console does not support SRV records and I can't create SRV records in the Test.com zone.
I use my internal CA (ADCS) for both internal and external clients. I installed certificate manually in trusted root node for all clients.
Now my questions are :
1) If I want to set manually, which A records or IP should be the Intrenal and External Server address ?
2) I use another TMG as edge firewall, I set 4 NAT rule for one-by-one NAT :
Source:192.168.220.2 --> NAT --> Destination:1.1.1.2
Source:192.168.220.3 --> NAT --> Destination:1.1.1.3
Source:192.168.220.4 --> NAT --> Destination:1.1.1.4
Source:192.168.220.5 --> NAT --> Destination:1.1.1.5
and temporary allow all incoming and outgoing traffic from Internet.
Are these configurations true?
Best Regard . . .
sadegh.nakhjavani@GMail.com