Forum Discussion
Need help with Lync Edge Servers
Can anyone give me some guidance on setting up our lync edge servers behind our F5? I've got two edge servers set up per MS documentation. Each have 3 public IPs, one assign to each service. And also an internal nic setup and routing has been established to the other lync servers. From external, if I go directly to one of the edge servers bypassing the VIP I can log in to the lync client externally. But if I go through the VIP it does not make the connection. Doing traces I see that it is indeed making it to the edge server through the VIP but it cannot complete the transaction and eventually times out. I've followed the documentation and setup a VIP for the access service (that connects the IM). But I am a little confused when going through the documentation as it has a setup for the external interface, which I have done but it also has a setup for the internal interface. How would I get both the internal and external interfaces behind the F5? I'll be happy to post screenshots of my config if it would help.
- mikeshimkus_111Historic F5 AccountHi Billy, which documentation did you follow? Are you using the iApp template, or configuring manually? We highly recommend the template if you are running BIG-IP v11.0 or higher.
- mikeshimkus_111Historic F5 AccountFirst off, I would definitely recommend upgrading to v10.2.2 HF1, or later. There is an SSL handshake issue that was addressed with that hot fix: https://support.f5.com/kb/en-us/solutions/public/13000/000/sol13037.html. I don't believe the Lync solution has been tested with any version earlier than 10.0. I would also have a look at the manual configuration tables in this guide, as they are the most recent: http://www.f5.com/pdf/deployment-guides/microsoft-lync-iapp-dg.pdf.
- SteveMPNimbostratusWhich version of the doc did you use. I remember one of the early ones I used it didnt work. I figured out by removing the SSl profiles it worked. The new version of the doc has fixed it. It looks like you have a SSL client profile so you may have just used an older version of doc. Set it to none and it should work. BTW, you are using Source Address Affinity for persistence method, correct?
- Billy_14103NimbostratusTHAT DID IT!!!!!!!!! EEEEEYYYYYYYYY!! TY!!!! Cant thank you enough. Maybe I finally get some good sleep tonight. Just made my week
- SteveMPNimbostratusGood to hear! Good luck, let me know if you hit any other issues. I set mine up a while back and the documentation had a lot of errors that I found out the "hard way". Luckily they all seem to have been fixed in the latest revision.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com