Where to place Lync Mediation Server

In Lync environment, I believe Edge Server should be in the DMZ and probably Mediation Server too (I am not sure).
inside the Network we can have Lync Server ( called Frond End).

I need to confirm whether Mediation server needs to be in DMZ

Thank you
jskfanAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Cliff GaliherCommented:
In most topologies, the mediation server is colocated on the FE server. The only time you'd break it out is in a SIP trunk situation where media bypass is not an option. In such cases, the SIP trunk is still a specific static eoute, so a DMZ offers no benefit but severely complicates things. It would be very unusual to put a standalone mediation server in a DMZ, in my opinion.
0
Satya PathakLead Technical ConsultantCommented:
0
Steven SheeleyConsulting SW Engineer - Lync/Skype4BusinessCommented:
The mediation server in Lync 2010/2013 is, or can be, collocated on the front end server. To enable Microsoft Lync server 2010/2013 for Enterprise voice scenarios, you need to implement a Mediation server. This server role has one purpose, which is transcoding known signaling and codecs to Microsoft’s own RT Audio codec (Real time Audio). And the mediation server is a part of your domain, INSIDE the DMZ, not a part of the DMZ.
0
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

jskfanAuthor Commented:
http://jaapwesscom.files.wordpress.com/2014/11/image54.png
on the Diagram shown in the above link, it looks to me like Mediation server is in the DMZ ??
0
jskfanAuthor Commented:
I also want to know when they say bypass the Mediation server, does that mean they do not need to use Mediation server at all.?
0
Cliff GaliherCommented:
Any reason why you consider a random wordpress blog authoritative? There is plenty of bad advice on all sorts of topics on the internet.
0
Cliff GaliherCommented:
"when they say bypass the Mediation server"
Who is "they?"  The question as you worded it is too vague to remotely answer.
0
jskfanAuthor Commented:
http://technet.microsoft.com/en-us/library/gg398719.aspx

Media bypass is a Lync Server capability that enables an administrator to configure call routing to flow directly between the user endpoint and the public switched telephone network (PSTN) gateway without traversing the Mediation Server
0
Cliff GaliherCommented:
As the name implies, media bypass *only* has the media stream bypassing the mediation server. This is done to improve call quality. The mediation server is still required for SIP traffic. This is illustrated well here:

http://technet.microsoft.com/en-us/library/gg398703.aspx
0
jskfanAuthor Commented:
OK Cliff...so Bypassing, will still use Mediation Server for Traffic Signaling, it will just skip the media traffic...

Thanks

Can you please just clarify the placement of the Mediation server, whether it goes in the DMZ or inside the network ?
I wonder if this diagram is correct :
http://jaapwesscom.files.wordpress.com/2014/11/image54.png
0
jskfanAuthor Commented:
I know the article is  from wordpress...
however if Media Server is directly connected to SIP provider, that might raise some concerns...
0
Cliff GaliherCommented:
As I said, in a SIP trunking scenario, the route should be so restricted that a DMZ is unnecessary. If the trunk provider is very untrusted, I'd be putting an SBC at the edge (or in the DMZ) and then have the mediation server only talk to the SBC. Either way, I see no benefit to putting a standalone mediation server in a DMZ. It is a topology I'd never use.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jskfanAuthor Commented:
Thank you so much for clearing this up!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Chat / IM

From novice to tech pro — start learning today.