SlideShare a Scribd company logo

Рабочие нагрузки Skype for business 2015 UC Lab

Download as PPTX, PDF
U
UC2

Встреча UC2 номер 12.

Software
1 of 58
Следующая встреча UC2 номер 13 (26.04.2016) Alexey Bogomolov Microsoft Microsoft MVP: Exchange Exchange 2013/2016 Transport High Availability Сергей Трюхан Avaya Networking Решения Avaya Networking для UC Microsoft Приходите на встречу UC2 номер 13 в Технологический Центр Microsoft (MTC) или подключайтесь к трансляции Skype for Business Online!
Рабочие нагрузки Skype for Business 2015 Журавлев Александр (UC Lab, Руководитель лаборатории) 29.03.2016 Технологический центр Microsoft
В докладе будут рассмотрены темы: • маршрутизация трафика Skype for Business 2015 • используемы порты и протоколы Skype for Business 2015 • моделирование и симуляция трафика Skype for Business 2015. решения Microsoft • моделирование и симуляция трафика Skype for Business 2015. решения IXIA (совместно с Владимиром Назаренко)
Моделирование и симуляция трафика Skype for Business 2015. решения Microsoft • Skype for Business, Bandwidth Calculator • Skype for Business 2015, Planning Tool • Stress and Performance Tool • iperf • Debugging Tools • Key Health Indicators • SDN API • KEMP шаблоны
Skype for Business, Bandwidth Calculator 2.60 PLEASE NOTE: This download is also applicable to Lync Server 2010 and 2013 deployments https://www.microsoft.com/en- gb/download/details.aspx?id=19011 20335B-5
10 профилей пользователей
10 центральных сайтов, 300 филиалов
Planning Tool Skype for Business 2015, Planning Tool (9319.145) https://www.microsoft.com/en-us/download/details.aspx?id=50357 Microsoft Lync Server 2013, Planning Tool (8308.420) https://www.microsoft.com/ru-ru/download/details.aspx?id=36823 Microsoft Lync Server 2010, Planning Tool (7577.117) https://www.microsoft.com/en-us/download/details.aspx?id=19711 Planning Tool for Office Communications Server 2007 (6362.53) https://www.microsoft.com/en-us/download/details.aspx?id=23126
Planning Tool
Planning Tool
Моделирование в Planning Tool 0 2 4 6 8 10 12 14 0 10000 20000 30000 40000 50000 60000 70000 80000 90000 Enterprise Edition FE(EE) Edge(EE) dir(EE) FE 6660 EDGE 15000 MAXIMUM 240000 (3 POOL, 36 FE)
DEMO Документирование инфраструктуры Документация для СБ
Stress and Performance Tool Skype for Business Server 2015, Stress and Performance Tool (9319.113) https://www.microsoft.com/en-us/download/details.aspx?id=50367 Lync Server 2013, Stress and Performance Tool (8308.299) http://www.microsoft.com/en-us/download/details.aspx?id=36819 Lync Server 2010, Stress and Performance Tool (7577.120) https://www.microsoft.com/en-us/download/details.aspx?id=25005
Подготовка к тестированию … <MediationServer>sea-pool.contoso.com</MediationServer> <MediationServerPort>5067</MediationServerPort> <GatewaySimulatorPort>5067</GatewaySimulatorPort> …
Выполнение тестирования cmd (Administrator) cd "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress" regsvr32 /i /n LyncPerfToolPerf.dll regsvr32 /i /n S4Perf.dll cd "C:3.28_21.4.25client0_all" RunClient0.bat "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress“ cd "C:3.28_21.4.25client1_all" RunClient1.bat "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress"
iperf Client (Internal) - FE
iperf Client (External) - EDGE
Debugging Tools Skype for Business Server 2015 Debugging Tools (9319.73) https://www.microsoft.com/en-us/download/details.aspx?id=47263 Microsoft Lync Server 2013 Debugging Tools (8308.577) http://www.microsoft.com/en-us/download/details.aspx?id=35453
Debugging Tools C:Program FilesSkype for Business Server 2015Debugging Tools C:Program FilesMicrosoft Lync Server 2013Debugging Tools
Key Health Indicators (perfmon.msc) Network Planning, Monitoring, and Troubleshooting with Lync Server https://www.microsoft.com/en-us/download/details.aspx?id=39084 Key Health Indicators for Lync Server 2013 and Skype for Business Server 2015 https://www.microsoft.com/en-us/download/details.aspx?id=46895 #Create KHI Data Collector on a single server Create_KHI_Data_Collector.ps1 –version Skype4B Create_KHI_Data_Collector.ps1 –version LyncServer2013 #Stop KHI Data Collector on a single server Logman stop KHI #Start KHI Data Collector on a single server Logman start KHI
SDN API SDN Manager в Windows 8.1 x64 в CMD от Администратора C:Program FilesMicrosoft Skype for Business ServerMicrosoft Skype for Business SDN Manager SDNManager.exe.config service Skype for Business SDN Manager Skype for Business SDN Interface - Skype for Business SDN Manager "C:Program FilesMicrosoft Skype for Business ServerMicrosoft Skype for Business SDN ManagerSDNManager.exe" Network Service
LDL config files (LyncDialogListener.exe.config) on the FE's LSM config files (LyncSDNManager.exe.config) on the LSM Lync SDN API 2.0 (от 14.1.2014) Lync SDN Interface 2.1.1 (от 26.1.2015) Skype for Business, SDN Interface 2.2 (от 19.6.2015) LDL config files (DialogListener.exe.config) on the FE's LSM config files (SDNManager.exe.config) on the LSM
SDN API 2.0 Архитектура (Источник: Microsoft) • Lync Dialog Listener (LDL) устанавливается на Lync FE Передает информацию (сигнализация и диагностическая информация о media) в LSM • Lync SDN Manager (LSM), устанавливается на отдельном сервере 2008/2012 Windows Server. Собирает данные и отправляет на контроллер Aruba (ArubaOS v6.3 и выше)
https://channel9.msdn.com/events/Lync-Conference/Lync- Conference-2014/NETW300 https://channel9.msdn.com/events/Lync-Conference/Lync- Conference-2014/NETW301 https://channel9.msdn.com/events/Lync-Conference/Lync- Conference-2014/NETW302 https://channel9.msdn.com/events/Lync-Conference/Lync- Conference-2014/NETW303 https://channel9.msdn.com/events/Lync-Conference/Lync- Conference-2014/SOLU201 https://channel9.msdn.com/events/Ignite/2015/BRK2191 Для информации
SDN API vs Heuristics (Aruba Networks) Для информации
Ports and protocols for internal servers https://technet.microsoft.com/en-us/library/gg398833.aspx Required Server Ports (by Server Role) Hardware Load Balancer Ports if Using Only Hardware Load Balancing Hardware Load Balancer Ports if Using DNS Load Balancing Required Client Ports
SfB_2015.tmpl
KEMP шаблоны SfB_2015.tmpl Кракозя́бры (крякозя́бры) — бессмысленный с точки зрения читателя набор символов, чаще всего получаемый на компьютере в результате неправильного перекодирования осмысленного текста. /Циклопедия/
Lync Edge Internal 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge Internal AV Media TCP L7 on Real Server round robin (TCP Audio, Video, Sharing & Files) 2 192.168.1.201:3478 udp Lync Edge Internal AV Media UDP L4 round robin (Audio/Video) 3 192.168.1.201:5061,5062 tcp Lync Edge Internal SIP L7 round robin (SIP/TLS, A/V Authentication) Lync Internal 2013 DNS 1 192.168.1.201:80,8080 tcp Lync Internal WebSvc HTTP L7 round robin 2 192.168.1.201:443,4443 tcp Lync Internal WebSvc HTTPS L7 on Real Server round robin Lync Internal 2013 HLB Only 1 192.168.1.201:80,8080 tcp Lync Internal WebSvc HTTP L7 round robin 2 192.168.1.201:135 tcp Lync Internal Front-End DCOM L7 round robin 3 192.168.1.201:443,444,4443 tcp Lync Internal WebSvc HTTPS HLB Only L7 on Real Server round robin 4 192.168.1.201:5061,448, tcp Lync Internal Front-End SIP L7 round robin 5070-5073,5075,5076,5080 Lync Mediation 2013 HLB Only 1 192.168.1.201:5070 tcp Lync Mediation L7 round robin Lync Office Web App Servers 2013 1 192.168.1.201:443 tcp Office Web App Servers L7 round robin Lync Reverse Proxy 2013 1 192.168.1.201:80 tcp Lync Reverse Proxy HTTP L7 round robin 2 192.168.1.201:443 tcp Lync Reverse Proxy HTTPS L7 round robin Для информации
Lync Director 2013 DNS 1 192.168.1.201:443,444,4443 tcp Lync Director L7 on Real Server round robin Lync Director 2013 HLB Only 1 192.168.1.201:443,444,4443 tcp Lync Director L7 on Real Server round robin 2 192.168.1.201:5061 tcp Lync Internal Director SIP L7 round robin Lync Edge External 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External SIP L7 on Real Server round robin (Remote Users) 2 192.168.1.201:5061 tcp Lync Edge External SIP Federation L7 round robin (SIP/TLS) 3 192.168.1.201:5269 tcp Lync Edge External XMPP L7 round robin Lync Edge External AV 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External AV Media TCP L7 on Real Server round robin (Fallback port, TCP Audio, Video, Sharing & Files) 2 192.168.1.201:3478 udp Lync Edge External AV Media UDP L4 round robin (Audio/Video) Lync Edge External Conferencing 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External Conferencing L7 on Real Server round robin (Conferencing) Для информации
2013 FE Name ProtocolPort FE Web 80 TCP 80 FE DCOM (RPC) TCP 135 RPC 443 WebSvc (SSL) FE Conf TCP 444 HTTPS – Intra and interpool communication (SSL) FE CAC TCP 448 Used for call admission control by the Lync Server Bandwidth Policy Service FE Web 4443 TCP 4443 (SSL) FE SIP TCP 5061 SIP/MTLS FE MED TCP 5070 для Mediation FE RSG TCP 5071 Response Group FE CAA TCP 5072 Attendant (dial in conferencing) FE CA TCP 5073 Conferencing Announcement service (that is, for dial-in conferencing) FE TCP 5075 Call Park FE TCP 5076 Audio Test service FE TCP 5080 Used for call admission control by the Bandwidth Policy service for A/V Edge TURN traffic FE Web 8080 TCP 8080 HTTP Root Cert Retrieval for Lync Phones Для информации
Microsoft Lync Server 2010 Protocol Workloads Poster.pdf
Lync_2013_poster.pdf
Skype for Business 2015 Protocol Workloads Poster https://www.microsoft.com/en-us/download/details.aspx?id=46448 IM and Presence A/V and Web Conferencing Application Sharing Enterprise Voice Certificate Requirements DNS ConfigurationCMS
CMS. Начальные условия Internal External Firewall Internal Firewall Back-end SQL Server Active Directory Domain Services Enterprise Pool (CMS master) Edge Pool (CMS replica) Director (CMS replica) Front-end Pool (CMS replica) Mediation Pool (CMS replica) Standard Edition Server (CMS replica) Branch Appliance (CMS replica) Install on Enterprise Edition to provide high availability.
CMS Internal HTTPS:4443 External Firewall Internal Firewall Back-end SQL Server Active Directory Domain Services Enterprise Pool (CMS master) Edge Pool (CMS replica) Director (CMS replica) Front-end Pool (CMS replica) Mediation Pool (CMS replica) Standard Edition Server (CMS replica) Branch Appliance (CMS replica) Default (1433) or SQL named instance TCP:1433 SMB:445 Install on Enterprise Edition to provide high availability. SMB traffic HTTPS traffic RTC xds Central Management Store data (master)
Enterprise Voice. Начальные условия Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end poolEdge Pool Exchange UM Branch Appliance Mediation Pool (optional) Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk WAN Connection
Enterprise Voice. SIP traffic; CAC traffic Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end poolEdge Pool Exchange UM Branch Appliance Mediation Pool (optional) Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk WAN Connection SIP/MTLS:5062 SIP/MTLS:5061 Access Edge - SIP/TLS:443 MRAS traffic Port number to service traffic assignment: 5064 - Telephony Conferencing Service 5067 – Mediation Server Service 5071 - Response Group Service 5072 - Conferencing Attendant Service 5073 - Conferencing Announcement Service 5075 - Call Park Service SIP/TLS:5061,5070 SIP/TLS:5061 SIP/MTLS SIP/TLS:5061 MRAS traffic Lync client automatically registers with the pool if the Branch Appliance becomes unavailable. For federation, SBA connects directly with Director. If no Director is available, federation traffic goes directly to the Edge Server. SIP/TCP:5060,5061 SIP/TLS:5061 SIP/MTLS:5062 SIP/MTLS:5061 TURN/TCP:448 If no Edge Server is defined in the topology, callee checks the Front End Server s Bandwidth Policy Service. HTTPS:444 SIP traffic Call Admission Control (CAC) traffic
Enterprise Voice. RTP/SRTP traffic: A/V Conferencing; ICE traffic RTP/SRTP traffic: A/V Conferencing ICE traffic Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end pool ICE: STUN/TCP:443, UDP:3478 SRTP: STUN/TCP:443, UDP:3478A/V Edge – ICE: STUN/TCP:443, STUN/UDP:3478 Edge Pool Exchange UM Branch Appliance SRTP: STUN/TCP:443, UDP:3478 ICE: STUN/TCP:443, UDP:3478 SRTP/UDP:30,000-39,999 SRTP:STUN/TCP:443,UDP:3478 ICE:STUN/TCP:443,UDP:3478 SRTP/RTCP:49,152-57,500 STUN/TCP:448 Mediation Pool (optional) Media bypass: audio routed directly to gateway bypassing Mediation Server. Enterprise Voice applications WAN Connection Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk SRTP/RTCP:49,152-57,500 SRTP/RTCP:60,000-64,000 Media codec varies per workload: RTAudio, G.711, SILK
Application Sharing. Начальные условия External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool
Application Sharing. SIP traffic: signaling; HTTP(S) traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool HTTPS:443 SIP/MTLS:5062 SIP/MTLS:5061 SIP/TLS:5061 HTTPS:4443 Access Edge - SIP/TLS:5061 Access Edge - SIP/TLS:443 SIP/TLS:5061 SIP/MTLS If client connects on port 80 during sign-in, it gets redirected to port 443 Port number to service traffic assignment: 5065 - Application Sharing Conferencing Service MRAS traffic SIP traffic: signaling HTTP(S) traffic
Application Sharing. RTP/SRTP traffic: A/V Conferencing; ICE traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool ICE: STUN/TCP:443 SRTP: STUN/TCP:443 A ICE: STUN/TCP:443 SRTP: STUN/TCP:443 RDP/SRTP/TCP:1024-65535 RDP/SRTP/TCP:49152-65535 Peer-to-peer application sharing session RTP/SRTP traffic: A/V Conferencing ICE traffic A Source IP A/V Edge Any Destination IP Any A/V Edge Source Port TCP 50,000-59,999 Any Destination Port TCP 443 TCP 443
A/V and Web Conferencing. Начальные условия External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool VIS VTC Office Web Apps Server CUCM
A/V and Web Conferencing. SIP traffic: signaling SIP traffic: signaling External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool VIS VTC Office Web Apps Server CUCM Access Edge – SIP/TLS:5061 Access Edge – SIP/TLS:443 SIP/MTLS/TCP:5062 SIP/MTLS/TCP:5061 TLS:5061 TCP:5060 TLS:5061 SIPTrunk SIP/MTLS/TCP:5061 SIP/TLS:5061 MRAS traffic TCP:5060 TLS:5061
A/V and Web Conferencing. RTP/SRTP traffic: A/V ConferencingExternal Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool A VIS SRTP: STUN/TCP:443, UDP:3478 SRTP: STUN/TCP:443, UDP:3478 SRTP/UDP:1024-65535 SRTP/UDP:49152-65535 HTTPS:443 SRTP/ UDP:49152- 65535 VTC Peer-to-peer A/V session. B C D Traffic goes directly to A/V Conferencing Service WITHOUT going through the pool s hardware load balancer Meeting content + metadata + compliance file share. SRTP/ UDP:49152- 65535 Office Web Apps Server CUCM A Source IP A/V Edge A/V Edge Any Any Destination IP Any Any A/V Edge A/V Edge Source Port TCP 50,000-59,999 UDP 3478 Any Any Destination Port TCP 443 UDP 3478 TCP 443 UDP 3478 B Codec varies per workload:  G.722 for audio  H264SVC for video C Codec varies per workload:  G.722, Siren or SILK for audio  H264SVC for video [RTVideo for downlevel clients] D Codec varies per workload:  G.722 for audio  H264AVC for video RTP/SRTP traffic: A/V Conferencing
A/V and Web Conferencing. HTTP(S) traffic PSOM traffic: Web Conferencing ICE traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool HTTPS:443 If client connects on port 80 during sign-in, it gets redirected to port 443 VIS ICE: STUN/TCP:443, UDP:3478 PSOM/MTLS/TCP:8057 ICE: STUN/TCP:443, UDP:3478 HTTPS:443 PSOM/TLS:8057 SMB:445 HTTPS:443 HTTPS:4443 HTTPS:443 HTTPS:443 SRTP/ UDP:49152- 65535 VTC E Meeting content + metadata + compliance file share. Director proxies Web traffic to destination pool s Web Service. Web Conf Edge - PSOM/TLS:443 A/V Edge – STUN/TCP:443, UDP:3478 Office Web Apps Server CUCM
IM and Presence. Начальные условия External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO)
IM and Presence. CLS traffic External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO) CLS/MTLS: 50001-50003 CLS traffic
External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO) B Access Edge – SIP/MTLS: 5061 SIP/MTLS: 5061 SIP/ MTLS: 5041 C SIP/TLS:5061 SIP/TLS:5061 SIP/MTLS Port number to service traffic assignment: 5062 – IM Conferencing Service 5086 – Internal Mobility Service 5087 – External Mobility Service External user sign-in process: 1. Client discovers Edge Server: a. lyncdiscoverinternal.<sip-domain> b. lyncdiscover.<sip-domain> c. _sipinternaltls._tcp.<sip-domain> d. _sipinternal._tcp.<sip-domain> e. _sip._tls.<sip-domain> f. sipinternal.<sip-domain> g. sip.<sip-domain> h. sipexternal.<sip-domain> 2. Client connects to Edge Server. 3. Edge Server proxies connection to Director. 4. Director authenticates user and proxy connection to user s home pool. B Internal user sign-in process: 1. Client discovers Enterprise Pool: a. lyncdiscoverinternal.<sip-domain> b. lyncdiscover.<sip-domain> c. _sipinternaltls._tcp.<sip-domain> d. _sipinternal._tcp.<sip-domain> e. sipinternal.<sip-domain> f. sip.<sip-domain> 2. Client connects to Enterprise Pool server. 3. Enterprise pool server authenticates user and redirects connection to user s home server. C SIP traffic: signaling and IM IM and Presence. SIP traffic: signaling and IM
IM and Presence. XMPP, HTTPS, MSMQ traffic XMPP traffic HTTPS traffic MSMQ traffic This port is used to connect to Web Services:  download the Address Book  connect to Address Book Web query URL  provide distribution list expansion  download meeting content  connect to the Mobility Service  connect to the AutoDiscover Service  connect to Dial-in URL  connect to Lync Web App  connect to CertProvisioningService A External Internal Reverse proxy Edge Pool ADFS Proxy A Skype Directory Search HTTPS:443 XMPP/TCP: 5269 Access Edge – SIP/TLS: 443 HTTPS: 4443 Front end pool Active Directory Domain Services Directors XMPP/MTLS: 23456 C3P/HTTPS: 444 Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Single sign-on (SSO) Director proxies Web traffic to destination pool s Web service. Publish rule for port 4443 to set forward host header to true. This ensures the original URL is forwarded. Ports to load balance by HLB: - 80 - 8080 - 443 - 4443 - 5061 [can use DNS load balancing] DSML/HTTPS: 443 MSMQ Skype for Business 2015 users Certificate Authority HTTP:80 TCP:443 Skype for Business 2015 users HTTPS:443 XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share HTTPS: 4443 SAML/HTTPS: 443 Skype for Business federation and Public IM LPE devices also require port 80.
Благодарю за внимание! Регистрация на мероприятия UC2 https://uc2.timepad.ru/ NEW! Презентации доступны для просмотра online и загрузки на сайте Slideshare http://www.slideshare.net/UC2 Канал UC2 в YouTube https://www.youtube.com/channel/UC6qbCeLgBLiPBHuylQaZNQw

Recommended

Csw2016 freingruber bypassing_application_whitelisting
Csw2016 freingruber bypassing_application_whitelistingCsw2016 freingruber bypassing_application_whitelisting
Csw2016 freingruber bypassing_application_whitelistingCanSecWest
 
Flight East 2018 Presentation–Continuous Integration––An Overview
Flight East 2018 Presentation–Continuous Integration––An OverviewFlight East 2018 Presentation–Continuous Integration––An Overview
Flight East 2018 Presentation–Continuous Integration––An OverviewSynopsys Software Integrity Group
 
Flight East 2018 Presentation–Black Duck at Docusign
Flight East 2018 Presentation–Black Duck at DocusignFlight East 2018 Presentation–Black Duck at Docusign
Flight East 2018 Presentation–Black Duck at DocusignSynopsys Software Integrity Group
 
CSW2017 chuanda ding_state of windows application security
CSW2017 chuanda ding_state of windows application securityCSW2017 chuanda ding_state of windows application security
CSW2017 chuanda ding_state of windows application securityCanSecWest
 
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...Synopsys Software Integrity Group
 
checkpoint
checkpointcheckpoint
checkpointMayank Dhingra
 
An Introduction to PowerShell for Security Assessments
An Introduction to PowerShell for Security AssessmentsAn Introduction to PowerShell for Security Assessments
An Introduction to PowerShell for Security AssessmentsEnclaveSecurity
 
Check Point SandBlast and SandBlast Agent
Check Point SandBlast and SandBlast AgentCheck Point SandBlast and SandBlast Agent
Check Point SandBlast and SandBlast AgentMarketingArrowECS_CZ
 

Recommended

Csw2016 freingruber bypassing_application_whitelisting
Csw2016 freingruber bypassing_application_whitelistingCsw2016 freingruber bypassing_application_whitelisting
Csw2016 freingruber bypassing_application_whitelistingCanSecWest
 
Flight East 2018 Presentation–Continuous Integration––An Overview
Flight East 2018 Presentation–Continuous Integration––An OverviewFlight East 2018 Presentation–Continuous Integration––An Overview
Flight East 2018 Presentation–Continuous Integration––An OverviewSynopsys Software Integrity Group
 
Flight East 2018 Presentation–Black Duck at Docusign
Flight East 2018 Presentation–Black Duck at DocusignFlight East 2018 Presentation–Black Duck at Docusign
Flight East 2018 Presentation–Black Duck at DocusignSynopsys Software Integrity Group
 
CSW2017 chuanda ding_state of windows application security
CSW2017 chuanda ding_state of windows application securityCSW2017 chuanda ding_state of windows application security
CSW2017 chuanda ding_state of windows application securityCanSecWest
 
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...Synopsys Software Integrity Group
 
checkpoint
checkpointcheckpoint
checkpointMayank Dhingra
 
An Introduction to PowerShell for Security Assessments
An Introduction to PowerShell for Security AssessmentsAn Introduction to PowerShell for Security Assessments
An Introduction to PowerShell for Security AssessmentsEnclaveSecurity
 
Check Point SandBlast and SandBlast Agent
Check Point SandBlast and SandBlast AgentCheck Point SandBlast and SandBlast Agent
Check Point SandBlast and SandBlast AgentMarketingArrowECS_CZ
 
technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3Muhammad Denis Iqbal
 
Windows Service Hardening
Windows Service HardeningWindows Service Hardening
Windows Service HardeningDigital Bond
 
Check Point designing a security
Check Point designing a securityCheck Point designing a security
Check Point designing a securityGroup of company MUK
 
Practical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open SourcePractical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open SourceBlack Duck by Synopsys
 
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...Priyanka Aash
 
Monitoring ICS Communications
Monitoring ICS CommunicationsMonitoring ICS Communications
Monitoring ICS CommunicationsDigital Bond
 
Exploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous DronesExploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous DronesPraetorian
 
Positive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсsPositive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсsMona Arkhipova
 
Havex Deep Dive (English)
Havex Deep Dive (English)Havex Deep Dive (English)
Havex Deep Dive (English)Digital Bond
 
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...Praetorian
 
F5 Web Application Security
F5 Web Application SecurityF5 Web Application Security
F5 Web Application SecurityMarketingArrowECS_CZ
 
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami LaihoCSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami LaihoNCCOMMS
 
Applying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.MonateApplying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.MonateMahaut Gouhier
 
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...Iftikhar Ali Iqbal
 
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021Teemu Tiainen
 
Defcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shopDefcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shopPriyanka Aash
 
Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)Digital Bond
 
Windows server hardening 1
Windows server hardening 1Windows server hardening 1
Windows server hardening 1Frank Avila Zapata
 
Security Framework from SANS
Security Framework from SANSSecurity Framework from SANS
Security Framework from SANSJeffrey Reed
 
The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018PureSec
 
Балансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for BusinessБалансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for BusinessAlexander Zhuravlev, Ph.D.
 
Sommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshopSommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshopTommy Clarke
 

More Related Content

What's hot

technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3Muhammad Denis Iqbal
 
Windows Service Hardening
Windows Service HardeningWindows Service Hardening
Windows Service HardeningDigital Bond
 
Practical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open SourcePractical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open SourceBlack Duck by Synopsys
 
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...Priyanka Aash
 
Monitoring ICS Communications
Monitoring ICS CommunicationsMonitoring ICS Communications
Monitoring ICS CommunicationsDigital Bond
 
Exploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous DronesExploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous DronesPraetorian
 
Positive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсsPositive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсsMona Arkhipova
 
Havex Deep Dive (English)
Havex Deep Dive (English)Havex Deep Dive (English)
Havex Deep Dive (English)Digital Bond
 
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...Praetorian
 
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami LaihoCSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami LaihoNCCOMMS
 
Applying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.MonateApplying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.MonateMahaut Gouhier
 
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...Iftikhar Ali Iqbal
 
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021Teemu Tiainen
 
Defcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shopDefcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shopPriyanka Aash
 
Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)Digital Bond
 
Security Framework from SANS
Security Framework from SANSSecurity Framework from SANS
Security Framework from SANSJeffrey Reed
 
The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018PureSec
 

What's hot (20)

technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3technical overview - endpoint protection 10.3.3
technical overview - endpoint protection 10.3.3
 
Windows Service Hardening
Windows Service HardeningWindows Service Hardening
Windows Service Hardening
 
Check Point designing a security
Check Point designing a securityCheck Point designing a security
Check Point designing a security
 
Practical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open SourcePractical Steps to Scale Legal Support for Open Source
Practical Steps to Scale Legal Support for Open Source
 
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of I...
 
Monitoring ICS Communications
Monitoring ICS CommunicationsMonitoring ICS Communications
Monitoring ICS Communications
 
Exploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous DronesExploring Risk and Mapping the Internet of Things with Autonomous Drones
Exploring Risk and Mapping the Internet of Things with Autonomous Drones
 
Positive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсsPositive Hack Days 7 - Ransomware forensiсs
Positive Hack Days 7 - Ransomware forensiсs
 
Havex Deep Dive (English)
Havex Deep Dive (English)Havex Deep Dive (English)
Havex Deep Dive (English)
 
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
STAAF, An Efficient Distributed Framework for Performing Large-Scale Android ...
 
F5 Web Application Security
F5 Web Application SecurityF5 Web Application Security
F5 Web Application Security
 
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami LaihoCSF18 - Moving from Reactive to Proactive Security - Sami Laiho
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
 
Applying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.MonateApplying formal methods to existing software by B.Monate
Applying formal methods to existing software by B.Monate
 
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
Symantec Endpoint Protection vs Sophos Endpoint Protection (Competitive Analy...
 
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
Zero Trust And Best Practices for Securing Endpoint Apps on May 24th 2021
 
Defcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shopDefcon 22-tim-mcguffin-one-man-shop
Defcon 22-tim-mcguffin-one-man-shop
 
Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)Vulnerability Inheritance in ICS (English)
Vulnerability Inheritance in ICS (English)
 
Windows server hardening 1
Windows server hardening 1Windows server hardening 1
Windows server hardening 1
 
Security Framework from SANS
Security Framework from SANSSecurity Framework from SANS
Security Framework from SANS
 
The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018The Top 10 Most Common Weaknesses in Serverless Applications 2018
The Top 10 Most Common Weaknesses in Serverless Applications 2018
 

Similar to Рабочие нагрузки Skype for business 2015 UC Lab

Балансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for BusinessБалансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for BusinessAlexander Zhuravlev, Ph.D.
 
Sommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshopSommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshopTommy Clarke
 
Byt ut din gamla växel – en djupdykning i Lync telefoni
Byt ut din gamla växel – en djupdykning i Lync telefoniByt ut din gamla växel – en djupdykning i Lync telefoni
Byt ut din gamla växel – en djupdykning i Lync telefoniTommy Clarke
 
Office Track: Lync & Skype Federation v2 Deep Dive - Johan Delimon
Office Track: Lync & Skype Federation v2 Deep Dive - Johan DelimonOffice Track: Lync & Skype Federation v2 Deep Dive - Johan Delimon
Office Track: Lync & Skype Federation v2 Deep Dive - Johan DelimonITProceed
 
Introduction to Lync Server 2010
Introduction to Lync Server 2010Introduction to Lync Server 2010
Introduction to Lync Server 2010Adam Jacobs
 
Office Comunnications Server 2007 R2 Poster
Office Comunnications Server 2007 R2 PosterOffice Comunnications Server 2007 R2 Poster
Office Comunnications Server 2007 R2 PosterPaulo Freitas
 
Chicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - MediaflyChicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - MediaflyMediafly
 
Swisscom my deploy_winworkers_arbeitsprobe
Swisscom my deploy_winworkers_arbeitsprobeSwisscom my deploy_winworkers_arbeitsprobe
Swisscom my deploy_winworkers_arbeitsprobeSebastian Lentz
 
FIWARE Global Summit - Real-time Media Stream Processing Using Kurento
FIWARE Global Summit - Real-time Media Stream Processing Using KurentoFIWARE Global Summit - Real-time Media Stream Processing Using Kurento
FIWARE Global Summit - Real-time Media Stream Processing Using KurentoFIWARE
 
Hybrid Integration with SAP
Hybrid Integration with SAPHybrid Integration with SAP
Hybrid Integration with SAPBizTalk360
 
O365con14 - lync to the future
O365con14 - lync to the futureO365con14 - lync to the future
O365con14 - lync to the futureNCCOMMS
 
NIC - Understand Lync Video and Interop - Level 300
NIC - Understand Lync Video and Interop - Level 300NIC - Understand Lync Video and Interop - Level 300
NIC - Understand Lync Video and Interop - Level 300Ståle Hansen
 
Ståle Hansen - Understand how video works in lync and how video interoperabil...
Ståle Hansen - Understand how video works in lync and how video interoperabil...Ståle Hansen - Understand how video works in lync and how video interoperabil...
Ståle Hansen - Understand how video works in lync and how video interoperabil...Nordic Infrastructure Conference
 
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)Codit
 
Deploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesDeploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesFabrizio Volpe
 
Skype 4 Business Webcast 11. März 2015
Skype 4 Business Webcast 11. März 2015Skype 4 Business Webcast 11. März 2015
Skype 4 Business Webcast 11. März 2015Thomas Poett
 
"Wie passen Serverless & Autonomous zusammen?"
"Wie passen Serverless & Autonomous zusammen?""Wie passen Serverless & Autonomous zusammen?"
"Wie passen Serverless & Autonomous zusammen?"Volker Linz
 

Similar to Рабочие нагрузки Skype for business 2015 UC Lab (20)

Балансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for BusinessБалансировщики KEMP для Microsoft Lync, Skype for Business
Балансировщики KEMP для Microsoft Lync, Skype for Business
 
Sommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshopSommarkollo 2013 lync workshop
Sommarkollo 2013 lync workshop
 
Byt ut din gamla växel – en djupdykning i Lync telefoni
Byt ut din gamla växel – en djupdykning i Lync telefoniByt ut din gamla växel – en djupdykning i Lync telefoni
Byt ut din gamla växel – en djupdykning i Lync telefoni
 
Office Track: Lync & Skype Federation v2 Deep Dive - Johan Delimon
Office Track: Lync & Skype Federation v2 Deep Dive - Johan DelimonOffice Track: Lync & Skype Federation v2 Deep Dive - Johan Delimon
Office Track: Lync & Skype Federation v2 Deep Dive - Johan Delimon
 
Introduction to Lync Server 2010
Introduction to Lync Server 2010Introduction to Lync Server 2010
Introduction to Lync Server 2010
 
Office Comunnications Server 2007 R2 Poster
Office Comunnications Server 2007 R2 PosterOffice Comunnications Server 2007 R2 Poster
Office Comunnications Server 2007 R2 Poster
 
Chicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - MediaflyChicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - Mediafly
 
Lync 2013 – New Workplace
Lync 2013 – New WorkplaceLync 2013 – New Workplace
Lync 2013 – New Workplace
 
Swisscom my deploy_winworkers_arbeitsprobe
Swisscom my deploy_winworkers_arbeitsprobeSwisscom my deploy_winworkers_arbeitsprobe
Swisscom my deploy_winworkers_arbeitsprobe
 
FIWARE Global Summit - Real-time Media Stream Processing Using Kurento
FIWARE Global Summit - Real-time Media Stream Processing Using KurentoFIWARE Global Summit - Real-time Media Stream Processing Using Kurento
FIWARE Global Summit - Real-time Media Stream Processing Using Kurento
 
voip
voipvoip
voip
 
voip
voipvoip
voip
 
Hybrid Integration with SAP
Hybrid Integration with SAPHybrid Integration with SAP
Hybrid Integration with SAP
 
O365con14 - lync to the future
O365con14 - lync to the futureO365con14 - lync to the future
O365con14 - lync to the future
 
NIC - Understand Lync Video and Interop - Level 300
NIC - Understand Lync Video and Interop - Level 300NIC - Understand Lync Video and Interop - Level 300
NIC - Understand Lync Video and Interop - Level 300
 
Ståle Hansen - Understand how video works in lync and how video interoperabil...
Ståle Hansen - Understand how video works in lync and how video interoperabil...Ståle Hansen - Understand how video works in lync and how video interoperabil...
Ståle Hansen - Understand how video works in lync and how video interoperabil...
 
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)
Hybrid integrationwithsap (Glenn Colpaert @ Integration Monday)
 
Deploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesDeploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexities
 
Skype 4 Business Webcast 11. März 2015
Skype 4 Business Webcast 11. März 2015Skype 4 Business Webcast 11. März 2015
Skype 4 Business Webcast 11. März 2015
 
"Wie passen Serverless & Autonomous zusammen?"
"Wie passen Serverless & Autonomous zusammen?""Wie passen Serverless & Autonomous zusammen?"
"Wie passen Serverless & Autonomous zusammen?"
 

Recently uploaded

Der Spagat zwischen BIAS und FAIRNESS (2024)
Der Spagat zwischen BIAS und FAIRNESS (2024)Der Spagat zwischen BIAS und FAIRNESS (2024)
Der Spagat zwischen BIAS und FAIRNESS (2024)OPEN KNOWLEDGE GmbH
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...gurkirankumar98700
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackVICTOR MAESTRE RAMIREZ
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfPower Karaoke
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfkalichargn70th171
 
Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...aditisharan08
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptkotipi9215
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantAxelRicardoTrocheRiq
 
What is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWhat is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWave PLM
 
Optimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVOptimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVshikhaohhpro
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationkaushalgiri8080
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...MyIntelliSource, Inc.
 
XpertSolvers: Your Partner in Building Innovative Software Solutions
XpertSolvers: Your Partner in Building Innovative Software SolutionsXpertSolvers: Your Partner in Building Innovative Software Solutions
XpertSolvers: Your Partner in Building Innovative Software SolutionsMehedi Hasan Shohan
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171
 
What is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsWhat is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsJheuzeDellosa
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxTier1 app
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...OnePlan Solutions
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfjoe51371421
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software DevelopersVinodh Ram
 

Recently uploaded (20)

Der Spagat zwischen BIAS und FAIRNESS (2024)
Der Spagat zwischen BIAS und FAIRNESS (2024)Der Spagat zwischen BIAS und FAIRNESS (2024)
Der Spagat zwischen BIAS und FAIRNESS (2024)
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStack
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdf
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
 
Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.ppt
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service Consultant
 
What is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWhat is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need It
 
Optimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVOptimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTV
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanation
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
 
XpertSolvers: Your Partner in Building Innovative Software Solutions
XpertSolvers: Your Partner in Building Innovative Software SolutionsXpertSolvers: Your Partner in Building Innovative Software Solutions
XpertSolvers: Your Partner in Building Innovative Software Solutions
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
 
What is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsWhat is Binary Language? Computer Number Systems
What is Binary Language? Computer Number Systems
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdf
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software Developers
 

Рабочие нагрузки Skype for business 2015 UC Lab

  • 1. Следующая встреча UC2 номер 13 (26.04.2016) Alexey Bogomolov Microsoft Microsoft MVP: Exchange Exchange 2013/2016 Transport High Availability Сергей Трюхан Avaya Networking Решения Avaya Networking для UC Microsoft Приходите на встречу UC2 номер 13 в Технологический Центр Microsoft (MTC) или подключайтесь к трансляции Skype for Business Online!
  • 2. Рабочие нагрузки Skype for Business 2015 Журавлев Александр (UC Lab, Руководитель лаборатории) 29.03.2016 Технологический центр Microsoft
  • 3. В докладе будут рассмотрены темы: • маршрутизация трафика Skype for Business 2015 • используемы порты и протоколы Skype for Business 2015 • моделирование и симуляция трафика Skype for Business 2015. решения Microsoft • моделирование и симуляция трафика Skype for Business 2015. решения IXIA (совместно с Владимиром Назаренко)
  • 4. Моделирование и симуляция трафика Skype for Business 2015. решения Microsoft • Skype for Business, Bandwidth Calculator • Skype for Business 2015, Planning Tool • Stress and Performance Tool • iperf • Debugging Tools • Key Health Indicators • SDN API • KEMP шаблоны
  • 5. Skype for Business, Bandwidth Calculator 2.60 PLEASE NOTE: This download is also applicable to Lync Server 2010 and 2013 deployments https://www.microsoft.com/en- gb/download/details.aspx?id=19011 20335B-5
  • 6.
  • 9.
  • 10. Planning Tool Skype for Business 2015, Planning Tool (9319.145) https://www.microsoft.com/en-us/download/details.aspx?id=50357 Microsoft Lync Server 2013, Planning Tool (8308.420) https://www.microsoft.com/ru-ru/download/details.aspx?id=36823 Microsoft Lync Server 2010, Planning Tool (7577.117) https://www.microsoft.com/en-us/download/details.aspx?id=19711 Planning Tool for Office Communications Server 2007 (6362.53) https://www.microsoft.com/en-us/download/details.aspx?id=23126
  • 13. Моделирование в Planning Tool 0 2 4 6 8 10 12 14 0 10000 20000 30000 40000 50000 60000 70000 80000 90000 Enterprise Edition FE(EE) Edge(EE) dir(EE) FE 6660 EDGE 15000 MAXIMUM 240000 (3 POOL, 36 FE)
  • 15. Stress and Performance Tool Skype for Business Server 2015, Stress and Performance Tool (9319.113) https://www.microsoft.com/en-us/download/details.aspx?id=50367 Lync Server 2013, Stress and Performance Tool (8308.299) http://www.microsoft.com/en-us/download/details.aspx?id=36819 Lync Server 2010, Stress and Performance Tool (7577.120) https://www.microsoft.com/en-us/download/details.aspx?id=25005
  • 16.
  • 17.
  • 18.
  • 20. Выполнение тестирования cmd (Administrator) cd "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress" regsvr32 /i /n LyncPerfToolPerf.dll regsvr32 /i /n S4Perf.dll cd "C:3.28_21.4.25client0_all" RunClient0.bat "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress“ cd "C:3.28_21.4.25client1_all" RunClient1.bat "C:Program FilesSkype for Business Server 2015LyncStressAndPerfToolLyncStress"
  • 23. Debugging Tools Skype for Business Server 2015 Debugging Tools (9319.73) https://www.microsoft.com/en-us/download/details.aspx?id=47263 Microsoft Lync Server 2013 Debugging Tools (8308.577) http://www.microsoft.com/en-us/download/details.aspx?id=35453
  • 24. Debugging Tools C:Program FilesSkype for Business Server 2015Debugging Tools C:Program FilesMicrosoft Lync Server 2013Debugging Tools
  • 25.
  • 26.
  • 27. Key Health Indicators (perfmon.msc) Network Planning, Monitoring, and Troubleshooting with Lync Server https://www.microsoft.com/en-us/download/details.aspx?id=39084 Key Health Indicators for Lync Server 2013 and Skype for Business Server 2015 https://www.microsoft.com/en-us/download/details.aspx?id=46895 #Create KHI Data Collector on a single server Create_KHI_Data_Collector.ps1 –version Skype4B Create_KHI_Data_Collector.ps1 –version LyncServer2013 #Stop KHI Data Collector on a single server Logman stop KHI #Start KHI Data Collector on a single server Logman start KHI
  • 28. SDN API SDN Manager в Windows 8.1 x64 в CMD от Администратора C:Program FilesMicrosoft Skype for Business ServerMicrosoft Skype for Business SDN Manager SDNManager.exe.config service Skype for Business SDN Manager Skype for Business SDN Interface - Skype for Business SDN Manager "C:Program FilesMicrosoft Skype for Business ServerMicrosoft Skype for Business SDN ManagerSDNManager.exe" Network Service
  • 29. LDL config files (LyncDialogListener.exe.config) on the FE's LSM config files (LyncSDNManager.exe.config) on the LSM Lync SDN API 2.0 (от 14.1.2014) Lync SDN Interface 2.1.1 (от 26.1.2015) Skype for Business, SDN Interface 2.2 (от 19.6.2015) LDL config files (DialogListener.exe.config) on the FE's LSM config files (SDNManager.exe.config) on the LSM
  • 30. SDN API 2.0 Архитектура (Источник: Microsoft) • Lync Dialog Listener (LDL) устанавливается на Lync FE Передает информацию (сигнализация и диагностическая информация о media) в LSM • Lync SDN Manager (LSM), устанавливается на отдельном сервере 2008/2012 Windows Server. Собирает данные и отправляет на контроллер Aruba (ArubaOS v6.3 и выше)
  • 32. SDN API vs Heuristics (Aruba Networks) Для информации
  • 33. Ports and protocols for internal servers https://technet.microsoft.com/en-us/library/gg398833.aspx Required Server Ports (by Server Role) Hardware Load Balancer Ports if Using Only Hardware Load Balancing Hardware Load Balancer Ports if Using DNS Load Balancing Required Client Ports
  • 35. KEMP шаблоны SfB_2015.tmpl Кракозя́бры (крякозя́бры) — бессмысленный с точки зрения читателя набор символов, чаще всего получаемый на компьютере в результате неправильного перекодирования осмысленного текста. /Циклопедия/
  • 36. Lync Edge Internal 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge Internal AV Media TCP L7 on Real Server round robin (TCP Audio, Video, Sharing & Files) 2 192.168.1.201:3478 udp Lync Edge Internal AV Media UDP L4 round robin (Audio/Video) 3 192.168.1.201:5061,5062 tcp Lync Edge Internal SIP L7 round robin (SIP/TLS, A/V Authentication) Lync Internal 2013 DNS 1 192.168.1.201:80,8080 tcp Lync Internal WebSvc HTTP L7 round robin 2 192.168.1.201:443,4443 tcp Lync Internal WebSvc HTTPS L7 on Real Server round robin Lync Internal 2013 HLB Only 1 192.168.1.201:80,8080 tcp Lync Internal WebSvc HTTP L7 round robin 2 192.168.1.201:135 tcp Lync Internal Front-End DCOM L7 round robin 3 192.168.1.201:443,444,4443 tcp Lync Internal WebSvc HTTPS HLB Only L7 on Real Server round robin 4 192.168.1.201:5061,448, tcp Lync Internal Front-End SIP L7 round robin 5070-5073,5075,5076,5080 Lync Mediation 2013 HLB Only 1 192.168.1.201:5070 tcp Lync Mediation L7 round robin Lync Office Web App Servers 2013 1 192.168.1.201:443 tcp Office Web App Servers L7 round robin Lync Reverse Proxy 2013 1 192.168.1.201:80 tcp Lync Reverse Proxy HTTP L7 round robin 2 192.168.1.201:443 tcp Lync Reverse Proxy HTTPS L7 round robin Для информации
  • 37. Lync Director 2013 DNS 1 192.168.1.201:443,444,4443 tcp Lync Director L7 on Real Server round robin Lync Director 2013 HLB Only 1 192.168.1.201:443,444,4443 tcp Lync Director L7 on Real Server round robin 2 192.168.1.201:5061 tcp Lync Internal Director SIP L7 round robin Lync Edge External 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External SIP L7 on Real Server round robin (Remote Users) 2 192.168.1.201:5061 tcp Lync Edge External SIP Federation L7 round robin (SIP/TLS) 3 192.168.1.201:5269 tcp Lync Edge External XMPP L7 round robin Lync Edge External AV 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External AV Media TCP L7 on Real Server round robin (Fallback port, TCP Audio, Video, Sharing & Files) 2 192.168.1.201:3478 udp Lync Edge External AV Media UDP L4 round robin (Audio/Video) Lync Edge External Conferencing 2013 HLB Only 1 192.168.1.201:443 tcp Lync Edge External Conferencing L7 on Real Server round robin (Conferencing) Для информации
  • 38. 2013 FE Name ProtocolPort FE Web 80 TCP 80 FE DCOM (RPC) TCP 135 RPC 443 WebSvc (SSL) FE Conf TCP 444 HTTPS – Intra and interpool communication (SSL) FE CAC TCP 448 Used for call admission control by the Lync Server Bandwidth Policy Service FE Web 4443 TCP 4443 (SSL) FE SIP TCP 5061 SIP/MTLS FE MED TCP 5070 для Mediation FE RSG TCP 5071 Response Group FE CAA TCP 5072 Attendant (dial in conferencing) FE CA TCP 5073 Conferencing Announcement service (that is, for dial-in conferencing) FE TCP 5075 Call Park FE TCP 5076 Audio Test service FE TCP 5080 Used for call admission control by the Bandwidth Policy service for A/V Edge TURN traffic FE Web 8080 TCP 8080 HTTP Root Cert Retrieval for Lync Phones Для информации
  • 39. Microsoft Lync Server 2010 Protocol Workloads Poster.pdf
  • 41. Skype for Business 2015 Protocol Workloads Poster https://www.microsoft.com/en-us/download/details.aspx?id=46448 IM and Presence A/V and Web Conferencing Application Sharing Enterprise Voice Certificate Requirements DNS ConfigurationCMS
  • 42. CMS. Начальные условия Internal External Firewall Internal Firewall Back-end SQL Server Active Directory Domain Services Enterprise Pool (CMS master) Edge Pool (CMS replica) Director (CMS replica) Front-end Pool (CMS replica) Mediation Pool (CMS replica) Standard Edition Server (CMS replica) Branch Appliance (CMS replica) Install on Enterprise Edition to provide high availability.
  • 43. CMS Internal HTTPS:4443 External Firewall Internal Firewall Back-end SQL Server Active Directory Domain Services Enterprise Pool (CMS master) Edge Pool (CMS replica) Director (CMS replica) Front-end Pool (CMS replica) Mediation Pool (CMS replica) Standard Edition Server (CMS replica) Branch Appliance (CMS replica) Default (1433) or SQL named instance TCP:1433 SMB:445 Install on Enterprise Edition to provide high availability. SMB traffic HTTPS traffic RTC xds Central Management Store data (master)
  • 44. Enterprise Voice. Начальные условия Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end poolEdge Pool Exchange UM Branch Appliance Mediation Pool (optional) Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk WAN Connection
  • 45. Enterprise Voice. SIP traffic; CAC traffic Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end poolEdge Pool Exchange UM Branch Appliance Mediation Pool (optional) Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk WAN Connection SIP/MTLS:5062 SIP/MTLS:5061 Access Edge - SIP/TLS:443 MRAS traffic Port number to service traffic assignment: 5064 - Telephony Conferencing Service 5067 – Mediation Server Service 5071 - Response Group Service 5072 - Conferencing Attendant Service 5073 - Conferencing Announcement Service 5075 - Call Park Service SIP/TLS:5061,5070 SIP/TLS:5061 SIP/MTLS SIP/TLS:5061 MRAS traffic Lync client automatically registers with the pool if the Branch Appliance becomes unavailable. For federation, SBA connects directly with Director. If no Director is available, federation traffic goes directly to the Edge Server. SIP/TCP:5060,5061 SIP/TLS:5061 SIP/MTLS:5062 SIP/MTLS:5061 TURN/TCP:448 If no Edge Server is defined in the topology, callee checks the Front End Server s Bandwidth Policy Service. HTTPS:444 SIP traffic Call Admission Control (CAC) traffic
  • 46. Enterprise Voice. RTP/SRTP traffic: A/V Conferencing; ICE traffic RTP/SRTP traffic: A/V Conferencing ICE traffic Internal Internal Firewall External Branch Office Skype for Business 2015 users Skype for Business 2015 users External Firewall Directors Skype for Business 2015 users Active Directory Domain Services Front end pool ICE: STUN/TCP:443, UDP:3478 SRTP: STUN/TCP:443, UDP:3478A/V Edge – ICE: STUN/TCP:443, STUN/UDP:3478 Edge Pool Exchange UM Branch Appliance SRTP: STUN/TCP:443, UDP:3478 ICE: STUN/TCP:443, UDP:3478 SRTP/UDP:30,000-39,999 SRTP:STUN/TCP:443,UDP:3478 ICE:STUN/TCP:443,UDP:3478 SRTP/RTCP:49,152-57,500 STUN/TCP:448 Mediation Pool (optional) Media bypass: audio routed directly to gateway bypassing Mediation Server. Enterprise Voice applications WAN Connection Connectivity to: IP-PSTN gateway IP/PBX Direct SIP SIP trunk SRTP/RTCP:49,152-57,500 SRTP/RTCP:60,000-64,000 Media codec varies per workload: RTAudio, G.711, SILK
  • 47. Application Sharing. Начальные условия External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool
  • 48. Application Sharing. SIP traffic: signaling; HTTP(S) traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool HTTPS:443 SIP/MTLS:5062 SIP/MTLS:5061 SIP/TLS:5061 HTTPS:4443 Access Edge - SIP/TLS:5061 Access Edge - SIP/TLS:443 SIP/TLS:5061 SIP/MTLS If client connects on port 80 during sign-in, it gets redirected to port 443 Port number to service traffic assignment: 5065 - Application Sharing Conferencing Service MRAS traffic SIP traffic: signaling HTTP(S) traffic
  • 49. Application Sharing. RTP/SRTP traffic: A/V Conferencing; ICE traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool ICE: STUN/TCP:443 SRTP: STUN/TCP:443 A ICE: STUN/TCP:443 SRTP: STUN/TCP:443 RDP/SRTP/TCP:1024-65535 RDP/SRTP/TCP:49152-65535 Peer-to-peer application sharing session RTP/SRTP traffic: A/V Conferencing ICE traffic A Source IP A/V Edge Any Destination IP Any A/V Edge Source Port TCP 50,000-59,999 Any Destination Port TCP 443 TCP 443
  • 50. A/V and Web Conferencing. Начальные условия External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool VIS VTC Office Web Apps Server CUCM
  • 51. A/V and Web Conferencing. SIP traffic: signaling SIP traffic: signaling External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool VIS VTC Office Web Apps Server CUCM Access Edge – SIP/TLS:5061 Access Edge – SIP/TLS:443 SIP/MTLS/TCP:5062 SIP/MTLS/TCP:5061 TLS:5061 TCP:5060 TLS:5061 SIPTrunk SIP/MTLS/TCP:5061 SIP/TLS:5061 MRAS traffic TCP:5060 TLS:5061
  • 52. A/V and Web Conferencing. RTP/SRTP traffic: A/V ConferencingExternal Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool A VIS SRTP: STUN/TCP:443, UDP:3478 SRTP: STUN/TCP:443, UDP:3478 SRTP/UDP:1024-65535 SRTP/UDP:49152-65535 HTTPS:443 SRTP/ UDP:49152- 65535 VTC Peer-to-peer A/V session. B C D Traffic goes directly to A/V Conferencing Service WITHOUT going through the pool s hardware load balancer Meeting content + metadata + compliance file share. SRTP/ UDP:49152- 65535 Office Web Apps Server CUCM A Source IP A/V Edge A/V Edge Any Any Destination IP Any Any A/V Edge A/V Edge Source Port TCP 50,000-59,999 UDP 3478 Any Any Destination Port TCP 443 UDP 3478 TCP 443 UDP 3478 B Codec varies per workload:  G.722 for audio  H264SVC for video C Codec varies per workload:  G.722, Siren or SILK for audio  H264SVC for video [RTVideo for downlevel clients] D Codec varies per workload:  G.722 for audio  H264AVC for video RTP/SRTP traffic: A/V Conferencing
  • 53. A/V and Web Conferencing. HTTP(S) traffic PSOM traffic: Web Conferencing ICE traffic External Internal Edge Pool Skype for Business 2015 users Skype for Business 2015 users External Firewall Internal Firewall File Share Server Reverse proxy Directors Skype for Business federation Skype for Business 2015 users Active Directory Domain Services Front end pool HTTPS:443 If client connects on port 80 during sign-in, it gets redirected to port 443 VIS ICE: STUN/TCP:443, UDP:3478 PSOM/MTLS/TCP:8057 ICE: STUN/TCP:443, UDP:3478 HTTPS:443 PSOM/TLS:8057 SMB:445 HTTPS:443 HTTPS:4443 HTTPS:443 HTTPS:443 SRTP/ UDP:49152- 65535 VTC E Meeting content + metadata + compliance file share. Director proxies Web traffic to destination pool s Web Service. Web Conf Edge - PSOM/TLS:443 A/V Edge – STUN/TCP:443, UDP:3478 Office Web Apps Server CUCM
  • 54. IM and Presence. Начальные условия External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO)
  • 55. IM and Presence. CLS traffic External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO) CLS/MTLS: 50001-50003 CLS traffic
  • 56. External Internal Reverse proxy Edge Pool ADFS ProxySkype Directory Search Front end pool Active Directory Domain Services Directors Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Skype for Business 2015 users Certificate Authority Skype for Business 2015 users XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share Skype for Business federation and Public IM Single sign-on (SSO) B Access Edge – SIP/MTLS: 5061 SIP/MTLS: 5061 SIP/ MTLS: 5041 C SIP/TLS:5061 SIP/TLS:5061 SIP/MTLS Port number to service traffic assignment: 5062 – IM Conferencing Service 5086 – Internal Mobility Service 5087 – External Mobility Service External user sign-in process: 1. Client discovers Edge Server: a. lyncdiscoverinternal.<sip-domain> b. lyncdiscover.<sip-domain> c. _sipinternaltls._tcp.<sip-domain> d. _sipinternal._tcp.<sip-domain> e. _sip._tls.<sip-domain> f. sipinternal.<sip-domain> g. sip.<sip-domain> h. sipexternal.<sip-domain> 2. Client connects to Edge Server. 3. Edge Server proxies connection to Director. 4. Director authenticates user and proxy connection to user s home pool. B Internal user sign-in process: 1. Client discovers Enterprise Pool: a. lyncdiscoverinternal.<sip-domain> b. lyncdiscover.<sip-domain> c. _sipinternaltls._tcp.<sip-domain> d. _sipinternal._tcp.<sip-domain> e. sipinternal.<sip-domain> f. sip.<sip-domain> 2. Client connects to Enterprise Pool server. 3. Enterprise pool server authenticates user and redirects connection to user s home server. C SIP traffic: signaling and IM IM and Presence. SIP traffic: signaling and IM
  • 57. IM and Presence. XMPP, HTTPS, MSMQ traffic XMPP traffic HTTPS traffic MSMQ traffic This port is used to connect to Web Services:  download the Address Book  connect to Address Book Web query URL  provide distribution list expansion  download meeting content  connect to the Mobility Service  connect to the AutoDiscover Service  connect to Dial-in URL  connect to Lync Web App  connect to CertProvisioningService A External Internal Reverse proxy Edge Pool ADFS Proxy A Skype Directory Search HTTPS:443 XMPP/TCP: 5269 Access Edge – SIP/TLS: 443 HTTPS: 4443 Front end pool Active Directory Domain Services Directors XMPP/MTLS: 23456 C3P/HTTPS: 444 Persistent Chat Server Persistent Chat Compliance Server Centralized Logging Service DirSync ADFS Back-end SQL Server Single sign-on (SSO) Director proxies Web traffic to destination pool s Web service. Publish rule for port 4443 to set forward host header to true. This ensures the original URL is forwarded. Ports to load balance by HLB: - 80 - 8080 - 443 - 4443 - 5061 [can use DNS load balancing] DSML/HTTPS: 443 MSMQ Skype for Business 2015 users Certificate Authority HTTP:80 TCP:443 Skype for Business 2015 users HTTPS:443 XMPP federation External Firewall Internal Firewall Office 365 File Share Server Address book & Persistent Chat file share HTTPS: 4443 SAML/HTTPS: 443 Skype for Business federation and Public IM LPE devices also require port 80.
  • 58. Благодарю за внимание! Регистрация на мероприятия UC2 https://uc2.timepad.ru/ NEW! Презентации доступны для просмотра online и загрузки на сайте Slideshare http://www.slideshare.net/UC2 Канал UC2 в YouTube https://www.youtube.com/channel/UC6qbCeLgBLiPBHuylQaZNQw