locked
Edge for OCS 2007 R2 trouble... (Without ISA Server??) RRS feed

  • Question

  • I seem to be having trouble with deploying a edge server for OCS 2007 R2.

    Can this be done without a reverse proxy? The only thing I really want at this point is to be able to invite anonymous users to a Live Meeting. I have a blade server in a DMZ that has two network cards. How exactly do I configure this? I've looked at http://blogs.pointbridge.com/Blogs/schertz_jeff/Pages/Post.aspx?_ID=19 and it still uses a ISA server.

    Any direction would be great. Again, the only thing I am trying to get working is the web conferencing edge service.
    Tuesday, June 30, 2009 3:38 PM

All replies

  • Jacob,

    You don't need to configure a reverse proxy rule to get external connectivity working, it only handles the Address Book, Distribution List expansion, and shared Live Meeting content that is uploaded to the internal Web Conferencing server.

    Take a look at this newer article for more details: http://blogs.pointbridge.com/Blogs/schertz_jeff/Pages/Post.aspx?_ID=67

    Also see this thread for more info: http://social.microsoft.com/Forums/en-US/communicationsserveredgeservers/thread/999f1550-9ace-4186-bdef-28a1626167de/
    Jeff Schertz, PointBridge | MVP | MCITP: Enterprise Messaging | MCTS: OCS
    Tuesday, June 30, 2009 4:04 PM
    Moderator
  • Well in my DMZ I have a server named OCS-Edge. It has a different IP and subnet range than my internal network (supposed to). I have two network cards.

    I guess I'm confused by the INTERNAL and EXTERNAL ip addresses they want?

    Internal as in the inside of my network where the communications server is? External is the one opened to the entire outside. On our Cisco firewall I have enabled source ANY to the ip address of the server on ANY port (for testing purposes) and it still cannot connect,.

    The Live Client just says it cannot connect. How exactly do I test this and make sure it is working without the Live Client?
    Tuesday, June 30, 2009 5:42 PM
  • Ok... still not working....

    This is what I have:

    Two network cards, both assigned a different ip on the SAME subnet and gateway.

    Firewall:

    Source: IP#1
    Destination: ANY
    Service: IP

    Source: IP#2
    Destination: ANY
    Service: IP

    Source: ANY
    Destination: IP#1
    Service: ANY

    Source: ANY
    Destination: IP#2
    Service: ANY


    I did the TELNET mentioned on the website and it worked fine. IT can't see to connect. I just don't get what I'm doing wrong


    Tuesday, June 30, 2009 6:50 PM
  • First off you don't want to have the default gateway defined on BOTH adapters.  Typically you'll only set it on the external-facing adapters, and then add static routes ot the server to handle communications to the internal server subnet.

    Also there is some stuff in this article specific to attempting to multi-home a server on the same IP subnet:
    http://blogs.pointbridge.com/Blogs/schertz_jeff/Pages/Post.aspx?_ID=33

    Jeff Schertz, PointBridge | MVP | MCITP: Enterprise Messaging | MCTS: OCS
    Tuesday, June 30, 2009 7:26 PM
    Moderator