Deployment Guide

citrix.com

Microsoft Lync 2013 and Citrix NetScaler Deployment Guide

http://www.citrix.com

Deployment Guide

citrix.com

NetScaler and Microsoft Lync 2013

2

Table of contents

Introduction 3Overview of Microsoft Lync 2013 3Lync Server Roles 3Standard Edition Server 3Front-End Server and Back-End Server 3Edge Server 4Mediation Server 5Director 5Persistent Chat Front-End Server 5Workload Types 6Instant Messaging and Presence 6Audio/Video & Web Conferencing 6Enterprise Voice 6Microsoft Recommended topology for HLB and Reverse Proxy 7Front End Pool Internal interface load balancer setting 8Front End Pool External Interface Load Balancer Settings 9Director Pool Load balancer settings 9Edge Internal Load Balancer Settings 9Edge External Load Balancer Settings 10Port information for Reverse Proxy External interface 10Port information for Reverse Proxy Internal interface 10NetScaler Load Balancing Microsoft Lync 2013 11Recommended Topology 11Load balancing internal traffic 11Lync Protocol / Port Information for internal traffic 12Internal DNS Considerations 19SSL Certificate Considerations 20Monitoring Resources 21Load balancing, Reverse Proxy for External traffic 21Load Balancing Edge Pool 21HTTPS Reverse Proxy 22Mobility 22Federations & XMPP Partners 22External DNS Considerations 25SSL Certificate Considerations 25Benefits of using a hardware appliance load balancer 27Conclusion 28Appendix 28Product versions used during testing 28Lync PowerShell Commands 28

http://www.citrix.com/

Deployment Guide

citrix.com

NetScaler and Microsoft Lync 2013

3

Citrix NetScaler is the industrys leading Application Delivery Controller (ADC) that optimizes and enhances the performance, availability, scalability and security of Microsoft Lync 2013 deployments. Citrix NetScaler is available both as physical and virtual appliance. This guide will take you through an easy to understand step by step process of deploying Citrix NetScaler for Microsoft Lync 2013.

Overview of Microsoft Lync 2013Microsoft Lync 2013 is a unified communication product. It offers features like Instant Messaging, VOIP, Online Conferencing, Collaborative development, File Sharing, integration with Exchange UM and federation services to integrate with other enterprises or public IM.

IM clients are available for windows, mac, mobiles; which can work with Lync 2013 servers as well as Lync Online ( Office 365).

Lync Server RolesStandard Edition Server The Standard Edition server is designed for small organizations, and for pilot projects in

large organizations. It enables many of the features of Lync Server, including the necessary databases, to run on a single server. This enables Lync Server functionality at a lower cost, but does not provide a true high-availability solution.

Standard Edition server enables instant messaging (IM), presence, conferencing, and Enterprise Voice, to run on a single server.

The main difference between Lync Server 2013 Enterprise Edition and Lync Server 2013 Standard Edition is that Standard Edition does not support the high-availability features included with Enterprise Edition. For high-availability, multiple Front-End servers must be deployed to a pool and the SQL Server needs to be mirrored. It is not possible to pool Standard Edition servers.

Front-End Server and Back-End Server In Lync Server Enterprise Edition, the Front-End Server plays the core server role, and runs

many basic Lync Server functions. The Front-End and Back-End Servers are the only server roles required to be in any Lync Server Enterprise Edition deployment.

A Front-End Pool is a set of Front-End Servers, configured identically, that work together to provide services for a common group of users. A pool of multiple servers running the same role provides scalability and failover capability.

The Front-End Server includes the following roles: - User authentication and registration - Presence information and contact card exchange - Address book services and distribution list expansion

http://www.citrix.com/

Deployment Guide

citrix.com

NetScaler and Microsoft Lync 2013

4

- IM functionality, including multi-party IM conferences - Web conferencing, PSTN Dial-in conferencing and A/V conferencing (if deployed) - Application hosting for applications included with Lync Server (for example, - Conferencing Attendant and Response Group application) and third-party

applications - Optional: monitoring-collection of usage information in the form of call detail

records (CDRs) and call error records (CERs). This information provides metrics about the quality of the media (audio and video) traversing the network for both Enterprise voice calls and A/V conferences.

- Web components of supported web-based tasks such as Web Scheduler and Join Launcher.

- Option: Archiving - archival of IM communications and meeting content for compliance.

- Option: Persistent Chat Web Services for Chat Room management and Persistent Chat Web Services for File Upload/Download [if persistent chat is enabled]

- NOTE: In Lync Server 2010 and prior versions, Monitoring and Archiving were separate server roles, not collocated on Front End Server.

Front-End Pools are also the primary store for user and conference data. Information about each user is replicated among Front-End Servers in the pool, and backed up on the Back-End Servers.

Additionally, one Front-End pool in the deployment also runs the Central Management Server, which manages and deploys basic configuration data to all servers running Lync Server. The Central Management Server also provides Lync Server Management Shell and file transfer capabilities.

The Back-End Servers are database servers running Microsoft SQL Server that provide the database services for the Front-End Pool. The Back-End Servers serve as backup stores for the pools user and conference data, and are the primary stores for other databases such as the Response Group database. A deployment with a single Back-End Server is possible but a solution that uses SQL Server mirroring is recommended for failover. Back-End Servers do not run any Lync Server software.

Edge Server Edge Server enables users to communicate and collaborate with users outside the

organizations core infrastructure. These external users can include the organizations own users who are currently working offsite, users from federated partner organizations, and outside users who have been invited to join conferences hosted on your Lync Server deployment. Edge Server also enables connectivity to public IM connectivity services, including Windows Live, AOL AIM, Yahoo! Messenger, and Google Talk.

http://www.citrix.com/

Deployment Guide

citrix.com

NetScaler and Microsoft Lync 2013

5

Deploying Edge Servers also enables mobility services, which supports Lync functionality on mobile devices. Users can use supported Apple iOS, Android, Windows Phone, or Nokia mobile devices to perform activities such as sending and receiving instant messages, viewing contacts, and viewing presence. In addition, mobile devices support some Enterprise Voice features, such as click to join a conference, Call via Work, single number reach, voice mail, and missed calls. The mobility feature also supports push notifications for mobile devices that do not support applications running in the background. A push notification is a notification that is sent to a mobile device about an event that occurs while a mobile application is inactive.

Edge Servers also include a fully-integrated Extensible Messaging and Presence Protocol (XMPP) proxy, with an XMPP gateway included on Front-End Servers. Configuring the XMPP components enables Lync Server 2013 users to add contacts from XMPP-based partners (such as Google Talk) for instant messaging and presence.

Mediation Server Mediation Server is a necessary component for implementing Enterprise Voice and dial-in

conferencing. Mediation Server translates signaling, and, in some configurations, media or mediates between your internal Lync Server infrastructure and a public switched telephone network (PSTN) gateway, IP-PBX, or a Session Initiation Protocol (SIP) trunk. You can run Mediation Server collocated on the same server as Front-End Server, or separated into a stand-alone Mediation Server pool.

Director Director can authenticate Lync Server user requests but they do not store user accounts,

provide presence, or conferencing services. Directors are most useful to enhance security in deployments that enable external user access. The Director can authenticate requests before sending them on to internal servers. In the case of a denial-of-service attack, the attack ends with the Director and does not reach the Front-End Servers.

Persistent Chat Front-End Server Persistent chat enables users to participate in multiparty, topic-based conversations that persist

over time. The Persistent Chat Front-End Server runs the persistent chat service. The Persistent Chat Back-End Server stores the chat history data, and information about categories and chat rooms. The optional Persistent Chat Compliance Back-End Server can store the chat content and events for the purpose of compliance.

Deployments running Lync Server Standard Edition can also run Persistent chat collocated on the same server. You cannot collocate the Persistent Chat Front-End Server with Enterprise Edition Front-End Server.

http://www.citrix.com/

Deployment Guide

citrix.com

NetScaler and Microsoft Lync 2013

6

Workload TypesInstant Messaging and Presence Instant messaging (IM) enables user