Forum Discussion
Shahram_83722
Jun 20, 2012Nimbostratus
I'm about to configure Lync on our Edge and was wondering if anyone has deployed a scenario similar to mine (depicted below) where ALL the VIPs and server IP's are all NATted in the firewall. I have all our Edge servers on a DMZ and our load balancer within that environment. I would like to know if this is a viable solution and whether it will work.
R1 and R2 represent the router which will serve as the default gateway on those subnets (Subnet20 and Subnet40 respectively). I will use an ACL to block the access between the Edge internal and Edge external interfaces as required by Microsoft documents. The Access External and Webconf external addresses will be on the same subnet behind the LB (10.10.20.0). All Virtual Servers will use the 10.10.10.0 subnet on the outside of the LB, including the 'Edge Internal' VS.
Couldn't get the diagram inhere... I'll think of a way...
All feedback is greatly appreciated.