OCS Edge Server

Posted on 2011-09-08
Medium Priority
Last Modified: 2012-05-12
We have a hybrid IP telephony system - integrated Nortel CS1k/OCS 2007 R2 environment which provides enterprise voice (VoIP) for our users. Mix of softphones/hardphones.

In our setup, we have an OCS Standard Edition server (which also has the Monitoring Server Role), a Mediation Server, an Application Proxy Server, a Unified Messaging Server and a CWA Server. They are all this side of the network, with a single TMG server facing the internet (holds CWA cert etc). We do not have an Edge Server or DMZ setup.

We are looking to enable the configuration for external web conferencing. So external users can join conferences (using Live Meeting).

The recommended MS configuration advises to have an Edge Server, in a DMZ. Is it possible to set this up in our existing configuration without negating security? (without having to setup a separate Edge Server, another Firewall and  a DMZ). Or even a compromise somewhere in the middle?

I know we can setup our existing OCS Server as the Edge Server but would expose it to the internet. Is it possible to do this but not have the OCS server directly internet facing and behind the TMG? And still be secure??

Many thanks

Question by:tebe155
LVL 12

Accepted Solution

Jeff_Schertz earned 2000 total points
ID: 36502473
You cannot deploy the Edge server role on any of the existing OCS servers, it must be installed on a dedicated server.

You also cannot provide external Web conferencinaccesses without the Edge server, simply forwarding traffic to the Front End server will not work.  Also you cannot publish the Edge server with TMG if you plan to use any Audio/VideDesktop Sharingng features externally as TMG does not support SNAT required for ICE media negotiation.

I suggest reading throsome som of these articles to understand what is and is not supported or possible with the OCS Edge Server configuration:

Author Comment

ID: 36502851
Hello Jeff,

Thanks for the information provided.

Can I quiz you further. Web Conferencing Server is configured on the OCS Std Ed server but obviously no Edge Server configured (see screendumps).

Is this why internal conferencing works via Outlook client and not externally?

And to sum up, we would need to install a dedicated Edge Server (internet facing) in a DMZ between TMG and another external firewall to get this working?


     ocs 1 ocs 2

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Back in July, I blogged about how Microsoft's new server pricing model, combined with the end of the Small Business Server package, would result in significant cost increases for many small businesses (see SBS End of Life: Microsoft Punishes Small B…
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
Watch the video to know how one can repair corrupt Exchange OST file effortlessly and convert OST emails to MS Outlook PST file format by using Kernel for OST to PST converter tool. It can convert OST to MSG, MBOX, EML to access them. It can migrate…
If you are looking for an automated tool which can generate reports for Outlook emails and other items from PST file, then you can go for Kernel PST Reporter tool. The reports which are created by this tool are helpful to analyze and understand PST …

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question