locked
ISA 2006 - Reverse Proxy settings OCS 2007 RRS feed

  • Question

  • On page 32 of the Edge deployment guide is described "Configuring a Reverse Proxy server".  It seems to be ISA 2004 oriented, but even at that I am unable to follow exactly what needs to be done to satisfy this installation.  It also seems to be obtional, but others have indicated LM will not work from external clients without this being set.  The Step 2.3 is not very helpfull.

     

    I am trying to get LM working from external clients and on the SE server I get the following error when trying to do a Meet Now:

    Failed to connect external users because the download URL is invalid.
    Failure occurrences: NE, since FE.

     

    I am able to perform the "access the portal site through the Internet" on page 37, but still get the above error.

     

    Does anybody have ISA 2006 working with the LM Edge server?  Can you PLEASE share your Reverse Proxy settings?  Step 2.3 doesn't really give the details to set up the reverse proxy that evidently is required.

     

    Thanks in advance.

     

    Doug

    Tuesday, June 12, 2007 12:21 AM

Answers

  • Hello doug,

     

    Reverse proxy is requied if you would like the following but it doesnt have to be an ISA Server it can be any Reverse Proxy.

     

    ·         To enable external users to download meeting content for your meetings.

    ·         To enable external users to expand distribution groups.

    ·         To enable remote users to download files from the Address Book Service

     

    The error that you are getting is not because the reverse proxy is not working it is because you do not have your external URL configure properly.  You will have to configure it through WMI using WBEMTEST tool. 

    Here's what you'll need to do to fix the error above:

    To resolve this issue, use Windows Management Instrumentation (WMI) to configure the server to use the external URL.

    If you did not configure a fully qualified domain name (FQDN) for an external Web farm when you created the Communications Server 2007 Enterprise pool or when you configured the Communications Server 2007 Standard Edition server, you must manually add this FQDN by using WMI.

    To configure the external Web farm FQDN, follow these steps:


    1.
     Log on to the computer that is running Communications Server 2007 Standard Edition or Communications Server 2007 Enterprise edition by using an account that is a member of the RTCUniversalServerAdmins group or that has equivalent permissions.


    2.
     Click Start, click Run, type wbemtest , and then click OK.


    3.
     In the Windows Management Instrumentation Tester dialog box, click Connect.


    4.
     In the Connect dialog box, type root\cimv2 in the Namespace box, and then click Connect.


    5.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    6.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool

    Select * from MSFT_SIPGroupExpansionSetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition

    Select * from MSFT_SIPGroupExpansionSetting where backend="(local)\\ rtc "


    7.
     In the Query Result dialog box, double-click the result.


    8.
     Select ExternalDLExpansionWebURL, and then click Edit Property.


    9.
     In the Property Editor dialog box, click to select the Not NULL option.


    10.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/GroupExpansion/service.asmx


    11.
     Click Close two times.


    12.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    13.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool

    Select * from MSFT_SIPDataMCUCapabilitySetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition

    Select * from MSFT_SIPDataMCUCapabilitySetting where backend="(local)\\ rtc "


    14.
     In the Query Result dialog box, double-click the result.


    15.
     Select ExternalClientContentDownloadURL, and then click Edit Property.


    16.
     In the Property Editor dialog box, click to select the Not NULL option.


    17.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/etc/place/null


    18.
     Click Close two times.


    19.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    20.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool
    Select * from MSFT_SIPAddressBookSetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition
    Select * from MSFT_SIPAddressBookSetting where backend="(local)\\ rtc "


    21.
     In the Query Result dialog box, double-click the result.


    22.
     Select ExternalURL, and then click Edit Property.


    23.
     In the Property Editor dialog box, click to select the Not NULL option.


    24.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/abs/Ext


    25.
     Click Close two times.


    26.
     Click Exit.

     

    Louis H

     

     

     

     

     

     

     

    Wednesday, June 27, 2007 6:59 PM

All replies

  • Hello doug,

     

    Reverse proxy is requied if you would like the following but it doesnt have to be an ISA Server it can be any Reverse Proxy.

     

    ·         To enable external users to download meeting content for your meetings.

    ·         To enable external users to expand distribution groups.

    ·         To enable remote users to download files from the Address Book Service

     

    The error that you are getting is not because the reverse proxy is not working it is because you do not have your external URL configure properly.  You will have to configure it through WMI using WBEMTEST tool. 

    Here's what you'll need to do to fix the error above:

    To resolve this issue, use Windows Management Instrumentation (WMI) to configure the server to use the external URL.

    If you did not configure a fully qualified domain name (FQDN) for an external Web farm when you created the Communications Server 2007 Enterprise pool or when you configured the Communications Server 2007 Standard Edition server, you must manually add this FQDN by using WMI.

    To configure the external Web farm FQDN, follow these steps:


    1.
     Log on to the computer that is running Communications Server 2007 Standard Edition or Communications Server 2007 Enterprise edition by using an account that is a member of the RTCUniversalServerAdmins group or that has equivalent permissions.


    2.
     Click Start, click Run, type wbemtest , and then click OK.


    3.
     In the Windows Management Instrumentation Tester dialog box, click Connect.


    4.
     In the Connect dialog box, type root\cimv2 in the Namespace box, and then click Connect.


    5.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    6.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool

    Select * from MSFT_SIPGroupExpansionSetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition

    Select * from MSFT_SIPGroupExpansionSetting where backend="(local)\\ rtc "


    7.
     In the Query Result dialog box, double-click the result.


    8.
     Select ExternalDLExpansionWebURL, and then click Edit Property.


    9.
     In the Property Editor dialog box, click to select the Not NULL option.


    10.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/GroupExpansion/service.asmx


    11.
     Click Close two times.


    12.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    13.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool

    Select * from MSFT_SIPDataMCUCapabilitySetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition

    Select * from MSFT_SIPDataMCUCapabilitySetting where backend="(local)\\ rtc "


    14.
     In the Query Result dialog box, double-click the result.


    15.
     Select ExternalClientContentDownloadURL, and then click Edit Property.


    16.
     In the Property Editor dialog box, click to select the Not NULL option.


    17.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/etc/place/null


    18.
     Click Close two times.


    19.
     In the Windows Management Instrumentation Tester dialog box, click Query.


    20.
     In the Query dialog box, type the following in the Enter Query box according to the edition of Communications Server 2007 that you are using, and then click Apply:

    For Communications Server 2007 Enterprise pool
    Select * from MSFT_SIPAddressBookSetting where backend=" server name \\ sql instance "

    For Communications Server 2007 Standard Edition
    Select * from MSFT_SIPAddressBookSetting where backend="(local)\\ rtc "


    21.
     In the Query Result dialog box, double-click the result.


    22.
     Select ExternalURL, and then click Edit Property.


    23.
     In the Property Editor dialog box, click to select the Not NULL option.


    24.
     In the Value box, type the external Web farm URL in the following format, and then click Save Property:
    https:// externalurl . domain .com/abs/Ext


    25.
     Click Close two times.


    26.
     Click Exit.

     

    Louis H

     

     

     

     

     

     

     

    Wednesday, June 27, 2007 6:59 PM
  • Isn't it possible to just run the configure server/pool wizard again from the setup?

     

    Regards,

    thomas

    Monday, July 9, 2007 2:20 PM
  • @myself: No, it's not possible to re-run the wizard.

    @Louis H: Step 11,18,25: You have to click "Save Object" insead of "close"

    Friday, July 13, 2007 12:48 PM
  • Wednesday, December 26, 2007 7:17 PM
  • Full and fresh version this solutions is http://support.microsoft.com/kb/938288 (MS KB 938288)

    Tuesday, January 1, 2008 11:36 PM
  • What do you mean specifically by "To enable external users to download meeting content for your meetings."  Is this talking about files or handouts that users might want to download and have locally or is it referring to application/desktop sharing for web conferences?
    Tuesday, March 25, 2008 4:07 PM
  • Hi,

    meeting content refers to shared documents (as PowerPoint, Word, but also white board) and handouts. However it will not be downloaded from a users machine: all shared data will be uploaded to the server, when sharing is started.

     

    Application/desktop sharing is different, this will not be uploaded to the server and is not related to the reverse proxy.

     

    hth,

    thomas

    Thursday, March 27, 2008 10:00 AM
  • Hi all, am a little confused as to how am suppose to configure my Access egde and my reverse proxy server

     

    i have configured a public address the ISA 2006 server which is on the same subnet as dat of my access edge server external address but am still having problems with the configurations

    can sumone please point me in the write directions with regards to the proper configurations of both the NICS and the reverse proxy server 

     

    thanks

     

     

    Saturday, June 21, 2008 9:28 PM
  • hi please can someone point me in the right direction with regards configuring my access edge NIC and the reverse proxy (isa 2006) server

     

    i have configured the 2 NIC with address (example below)

     

    it is consolidated topology

     

    access edge :  10.0.0.1 - internal

    Access edge : external :    12.0.0.1 accees edge

    12.0.0.2 web conferencing edge

    12.0.0.3 A/edge conf

     

     

     

    for the reverse proxy

     

    2 NIC- 10.0.0.3 for internal

    12.0.0.4 for external

     

    can i please get help on this

     

    thanks

    Saturday, June 21, 2008 10:03 PM