Media connectivity through Edge (ICE) Home Internet Home NAT Work Internet Perimeter Network Outer FW Inner FW.
Download ReportTranscript Media connectivity through Edge (ICE) Home Internet Home NAT Work Internet Perimeter Network Outer FW Inner FW.
Media connectivity through Edge (ICE) Home Internet Home NAT Work Internet Perimeter Network Outer FW Inner FW Private Computer Private Network Access Edge NAT/Firewall Internet Internet Computer INVITE m/c = a Home Access Edge a Home NAT 200OK m/c = w Work w Outer FW Inner FW UDP TCP INVITE m/c = a cand=a,b,c,d,e Home a Access Proxy b c e d x Home NAT Outer FW y STUN TURN Server 200OK m/c = w cand=w,x,y Work w (AV Edge) Inner FW Remote, Federated and anonymous users Reverse Proxy Edge Server SIP Register 200 OK ms-user-logon-data: RemoteUser <mrasUri>sip:Mras.contoso.com Access Edge Lync FE Server SIP Service <location>internet</location> 200 OK <hostName>edge.contoso.com <udpPort>3478 <tcpPort>443 <username> 77qq8yXccBc2lwOmFy <password> Wnujl0eo00YkV/5dg= <duration>480 Endpoint Outer Firewall MTLS Service 200OK MRAS A/V Edge Inner Firewall SIP Invite 200 OK <hostName>avedge.contoso.com <udpPort>3478 <tcpPort>443 <username> 77qq8yXccBc2lwOF <password> Wnujl0eo00YkV/5g= <duration>480 Access Edge MTLS Lync FE Server Service 200OK A/V Auth Endpoint Outer Firewall A/V Edge Inner Firewall c a default nic a c d candidate list b MRAS Allocate UDP b Allocate TCP d Media Relay e local remote Endpoint NAT/Firewall UDP TCP c e Desktop Sharing, File Transfer c a default nic a c local candidate list b MRAS Allocate TCP b remote Endpoint NAT/Firewall Media Relay UDP TCP c local b nic2 f d default a b c d e f g a UPNP: Add Port Map g candidate list c nic MRAS Media Relay remote Endpoint NAT/Firewall UDP TCP c e nic a b x w nic SIP INVITE b c d c 183 Session Progress y :: w,x,y,z w a 200 OK x b y :: w,x,y,z y z NAT/Firewall c c y d z SIP d local default y Edge Endpoint remote c :: a,b,c,d candidate list a candidate list c remote default local y w x y z Edge NAT/Firewall Endpoint 20 Access Edge Work1 Home1 Lync A/V MCU Mediation ExchangeUM UDP 3478 Lync TCP 443 . . . Home2 Lync NAT/FW Outer FW (no NAT) UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 A/V Edge Work2 Lync Inner FW Access Edge w1 Work1 Lync A/V MCU Mediation ExchangeUM UDP 3478 TCP 443 w1 w1 w2 w2 Outer FW (no NAT) UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 A/V Edge w2 Work2 Lync Inner FW Home1 Access Edge h1 w1 Lync h1 UDP 3478 h1 TCP 443 h1 h1 w1 w1 Outer FW (no NAT) UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 A/V Edge Inner FW Work1 Lync A/V MCU Mediation ExchangeUM Access Edge h1 Home1 Lync h1 UDP 3478 h1 TCP 443 h2 h2 Home2 Lync h2 h2 h1 h2 h1 Outer FW (no NAT) UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 A/V Edge Inner FW Work1 w1 Access Proxy Access Proxy w2 Lync A/V MCU Work2 Lync A/V MCU Inner FW UDP 3478 UDP 3478 TCP 443 TCP 443 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 2007 Edge w1 w2 w1 w2 Outer FWs (no NAT) 2007 Edge Inner FW Work1 w1 Access Proxy Access Proxy w2 Lync A/V MCU Work2 Lync A/V MCU Inner FW UDP 3478 UDP 3478 TCP 443 TCP 443 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 R2/Lync Edge w1 w2 w1 w2 Outer FWs (no NAT) R2/Lync Edge Inner FW Work1 w1 Access Proxy Access Proxy w2 Lync A/V MCU Work2 Lync A/V MCU Inner FW UDP 3478 UDP 3478 TCP 443 TCP 443 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 UDP/TCP 50000 . . . . . . . . . UDP/TCP 59999 R2/Lync Edge w1 w2 w1 w2 Outer FWs (no NAT) 2007 Edge Inner FW Minimum Requirements Optimal Configuration 443 TCP 3478 UDP 443 TCP 3478 UDP 50,000 port range 50,000 port range 443 TCP 3478 UDP 443 TCP 3478 UDP 50,000 port range 50,000 port range SIP Register Access Edge SIP Service A/V Auth Service Issue A/V Edge Allocate UDP A/V Auth Allocate TCP A/V Edge UDP TCP TLS Lync External Firewall Load Balancers Internal Firewall Lync FE Server ICE Bootstrap UCCP Log Tip AVEdge Provisioning Search mrasuri for SIP 200OK provisioning response AVEdge Credentials Search credentialsRequestID for SIP SERVICE ICE Negotiation UCCP Log Tip Address Discovery Search a=candidate to find first INVITE/200OK Check IP addresses of UDP/TCP candidate pairs in INVITE Confirms pool is configured with A/V Edge server Confirms A/V Edge is running and reachable on internal port TCP5062 Confirms local endpoint** can reach A/V Edge server Address Exchange Search a=candidate to find first INVITE/200OK Check IP address of UDP/TCP candidate pairs in 200OK Confirms remote endpoint** reach A/V Edge server Connectivity Checks Check Re-Invite (see below) for connectivity check result Candidate Promotion Search for “a=remote-candidate” INVITE and 200OK should have only one candidate pair Confirms connectivity check completed Confirms candidate promotion completed and the path that ICE negotiated http://blogs.technet.com/b/uc/ http://www.facebook.com/MicrosoftOfficeCommunicator http://blogs.technet.com/b/nexthop/ http://lync.microsoft.com/en-us/Pages/unified-communications.aspx http://northamerica.msteched.com www.microsoft.com/learning http://microsoft.com/technet http://microsoft.com/msdn