Some Lync Server 2013 questions on Reverse Proxy, Edge Server etc

So I have a fully functional Lync 2013 server configured and running for about a month now.  I am in the process of doing the research on what I need to do to get it all working externally.  I know that I need an edge server and the role of a reverse proxy.  

My main question is do these need to be on separate servers or can I have the reverse proxy configured on the edge server itself?  

I am pretty new to Lync setups.  How many servers will this functionality require?

I might have a few follow up questions based on responses.
ProactionTechAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Satyendra SharmaMicrosoft UC Technical ArchitectCommented:
First of all Reverse proxy and Edge servers are two separate component to facilitate Lync external services and you cannot co-locate both of them on same server.

Lync Edge servers provide external login, web conferencing, and Audiovideo connection point.
Reverse proxy facilitates Addressbook, group expansion and mobility connectivity

Here is a article that i would suggest to start from - http://technet.microsoft.com/en-us/library/gg425716.aspx
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Satyendra SharmaMicrosoft UC Technical ArchitectCommented:
Also here is an article with all the infrastructure qualified for Lync 2013 in regards to Reverse Proxy and Load balancers - http://technet.microsoft.com/en-us/office/dn788945.aspx
0
ProactionTechAuthor Commented:
Thanks, I am reviewing these now.  Additional feedback is still welcomed.
0
Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

ProactionTechAuthor Commented:
I have a few projects on my plate right now besides this Lync one..  Has anyone set this all up before and able to say about how long this would normally take if no issues come up?
0
Satyendra SharmaMicrosoft UC Technical ArchitectCommented:
It depends on your requirement and existing infrastructure.

Is there a Edge HA requirement?
Do you have a DMZ segment already?
Do you have a reverse proxy in place for other applications or web services?

Other items you will need is
public ip's
public certificates
0
ProactionTechAuthor Commented:
HA is not required, I do not have a DMZ set up currently but I have a Sonicwall I can add configuration to, I dont have a reverse proxy server for anything else yet, I do have public IP's and I do have 1 cert..

Do I need a public cert for the reverse proxy as well as the edge?  I currently have one public cert with the typical dns stuff added and then one internal cert for the FE server.  It sounds like I need one public each for rev proxy and edge..
0
Satyendra SharmaMicrosoft UC Technical ArchitectCommented:
Well I guess you have bunch of stuff to do before you can have Lync externally available :|

Check out the infrastructure qualification article I send it has as reverse proxy section with the list of all support products.
And the Edge topology article has the details on how many public ip's you would need depending on your edge topology. If you only deploy 1 Edge server you can get away with only 2 public Ip's (1 for edge 1 for reverse proxy)

But you will need some kind of reverse proxy, isn't sonicwall only a firewall? Do you have Exchange exposed over to internet already?
0
Satyendra SharmaMicrosoft UC Technical ArchitectCommented:
0
ProactionTechAuthor Commented:
Thanks, I am going to take the next day to review all the information in these links.  I will post back after.
0
ProactionTechAuthor Commented:
Hey, just so you know I got pulled away from this project to do a VDI deployment :\

I will be starting again on this soon and will certainly finish this up and award points.  Thanks for patience.
0
ProactionTechAuthor Commented:
This is still on the list but I cant start it yet.  Mods, should I close this and re-open when I can work on it?
0
ProactionTechAuthor Commented:
I will be revisiting this at a later time.  Some questions were answered and marked accordingly, thanks for the help!  

I will link to this article when I continue the project.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking

From novice to tech pro — start learning today.