UNC220

Deploying Lync Server 2010 as a

primary telephony solution
Dee Chury Phillip Priestley
Global Solution Architect – UC Technical Consultant –
UC
Dell IT Consulting Dell IT Consulting
Agenda
Overview of the customer
Reasons why Lync Server 2010 was chosen
Architecture overview
Conceptual
Logical
Physical
Early adopter experiences & points to note
Introduction to Dell UC Solutions
Dell provides a
single point of
cont act , for an end-
t o-end UC solut ion
Core Messaging Unified Messaging Core Unified Comms

Simple
Enterprise grade messaging. Base
Enables
foundation
voicemail,
Basefor
module
Exchange
email
thatand
provides
Server
fax to2010
be
enterprise
sent
UMto inbox.
grade Anywhere
presence, access
IM, wentoconferencing
inbox and group cha

Core Infrast ruct ure

Pract ical Flexible

Integrating Core UC with existing PBX infrastructure
Building uponbyCore
adding
UCVoIP
to provide
features
multi
through
party the
voice
use
and
of video
a soft conferencing
phone on the using
data network
webcams and confe

Dell UC solut ions Dell has a m odular Enterprise Voice AV Conferencing

incorporat e approach t o UC
st andard based int egrat ion
t echnology
Building Schools of the Future Overview


BSF launched in 2004 by then UK Prime Minister -

Tony Blair
Aim of BSF programme was to rebuild or refurbish
every secondary school in England over a 20 year
period
Programme was cancelled in July 2010 by which
point 185 schools had received BSF investment
Dell and our consortium partners have 12 schools
across 2 local authorities which are opening
between 2010-2012
Amongst ICT requirements, each new school
requires a telephony platform in order to operate

Selection of Microsoft UC Voice
 Requirements
Core voice requirements
Typical telephony features
Flexible end-point deployment
Other ICT requirements included
Video conferencing
Web conferencing
Application sharing
Instant messaging
Budget apportionment
Considered solutions

Traditional IPT solution
Only addressed core voice
requirements
Tied to network hardware
High cost
Microsoft Unified Communications
Met (and exceeded) all
communication and collaboration
requirements, not just voice
Tightly integrated experience
Freed up budget for other front of
class curriculum solutions
Conceptual Architecture
Cent ral First phase of 6 schools needs to cater
for over 5,600 users with a high-level
Dat acent re of concurrency during core school
hours.
UC Monitoring & Archiving
UC Mediation Compliance Services UM Service Messaging Service
AD Possible expansion to over 25,000 users
through extended services.
All UC users provisioned from local
UC Edge Service UC Enterprise Pool Zone Integration Server IdAM
Net Load Balancing Systems Mgmt school MIS to central AD via SIF and
IdAM infrastructure.
Branch site resilience implemented. UC
clients failover to central UC pool in
the event of local UC server outage.
Extensive remote usage of UC is
expected during non-core hours.

School A School B School C School D School E School F

School MIS UC Server School MIS UC Server School MIS UC Server School MIS UC Server School MIS UC Server School MIS UC Server

Users: 952 Users: 1,130 Users: 1,106 Users: 162 Users: 1,064 Users: 1,204
PCs: 724 PCs: 739 PCs: 537 PCs: 102 PCs: 494 PCs: 568
Phones: 55 Phones: 55 Phones: 55 Phones: 25 Phones: 55 Phones: 55
Conceptual Architecture
Centrally hosted telephony
 School hosted telephony


features features

Backup SIP registrar Primary SIP registrar

Central call breakout via SIP trunk Local call breakout via ISDN
Access Edge remote access
Dial-in conferencing
 Logical Architecture
Central Datacentre

Remote
Backup user
Primary SIP primary SIP
backup
SIP registrar
registrar SIP registrar
registrar

DMZ
Lync Edge Server

HLB

HLB
Lync Edge Server
Remote
Lync User

TMG Array

School A
DSL Firewall
Lync TMG
HLB

Internal Network
Users
Voice GW

AD
Lync Standard Ed Server Lync Director Server
Lync Director Server
E1

Lync Monitoring & Archiving Servers

Lync Server Enterprise Pool

School B
TMG
Lync
Users
Compliance Servers
Voice GW

Lync Mediation Server

SQL Cluster
Lync Standard Ed Server

External
Phone
Site Survivable Voice
Features supported on

Features
Features not supported on


backup registrar during backup registrar during

failover failover
Outbound PSTN calls Voicemail deposit and retrieval
Inbound PSTN calls (requires carrier Conference Auto-Attendant
support Conferencing of all types
Intrasite and intersite user calls Presence and DND-based routing
Basic call handling, e.g. call hold, Updating call forwarding settings
transfer, etc. Response Group Service and Call Park
Authentication and authorisation Provisioning new phones and clients
Call Detail Records (CDR)
Call forwarding
Simultaneous ringing of end-points
Boss/administrator and team call
services
Existing phones and clients stay alive
Physical Architecture
Central Infrastructure Services Central UC Solution School UC Solution
SAN / Hyper-V farm supporting AD, Servers = Dell PE R610 Server = Dell PE R610
PKI, FIM, file servers, SCOM, etc. Exchange utilizing high-density SATA
Lync Server utilizing shared general (48 x 2TB drives in 4U)
Dialogic DMG2000
purpose SQL cluster HLBs = Loadbalancer.org
Compliance Servers = FaceTime Lync Server Std Ed
& Mediation Server
Vantage
TMG Array
Exchange Lync Edge
Edge Servers Servers
Hyper-V
Farm
Lync Mediation
Server
Lync Monitoring &
SQL Server Archiving Server
HA Cluster Exchange Unified
Messaging Servers Lync Director
Servers

Exchange Multi- Lync Front End

Role Servers Servers
EqualLogic
PS6000X Compliance
iSCSI SAN Servers
EqualLogic
PS6500E
Hardware
iSCSI SAN
Load
Balancers
Physical Vs. Virtualised Servers

FaceTime Vantage Appliance

FaceTime Vantage Appliance

Lync Director Server Lync Front End Server

Lync Director Server Lync Front End Server

Lync Director Server Lync Front End Server

HW Load Balancer Lync Mediation Server

HW Load Balancer Lync Monitoring Server

Design was completed Physical
Architecture
before support for
virtualisation of all Lync
Server roles was announced

SQL Server Node

SQL Server Node

Starting at this point we
would consider utilising
virtualisation to reduce the
Virtualised Architecture
physical datacentre
footprint yet further

Lync Front End Server

Lync Director Server

Virtualisation can provide an VA Load Balancer VA Load Balancer SQL Server Node SQL Server Node

efficient method for

increasing availability of a Lync Director Server Lync Director Server

Lync Server deployment

Lync Front End ServerLync
Lync Front
Front End
End Server
Server
without incurring physical
server sprawl, but only if Lync Monitoring ServerLync Mediation Server
your capacity requirements
sit well inside scaling
Compliance Requirements
The Lync Server 2010 Archiving Server role
 FaceTime Vantage provides many features for
provides sufficient features for many securing and managing a UC environment;
compliance requirements. Content that is however, specific functionality Dell will
archived includes the following: implement includes:
Content of peer-to-peer instant messages Customisable chat disclaimers
Content of Web conferences, including Assign and enforce regulatory compliance
uploaded content (such as hand-outs) and features at the local authority, school, group
events (such as joining, leaving, uploading and individual user levels
sharing, and changing visibility). Configure ethical walls to restrict intergroup
and inter-school contact
Monitoring and Archiving has been enabled for
 

all users with data retention for 120 days.
However, our Education customer’s

The FaceTime solution is planned for
implementation in Jan 2011, shortly after the
product is due for general release.

requirements exceeded the feature set of the

Archiving Server role alone, so a third-party
solution was sought.


Dell selected FaceTime Vantage to provide the



necessary additional functionality.

Compliance Policies
 Ethical walls provide the necessary control for ‘duty of care’ requirements

Local School Alternative BSF School

Stud Seni Teac Ad 3rd Stud Seni Teac Ad 3rd
ents or hing min Part ents or hing min Part
Stud Staff Staff y Stud Staff Staff y
ents User ents User
s s
Loca Students X X X Local Students
l Schoo
Scho Senior X X X l Senior *
ol Students
Teaching StaffX X X X X Students
Teaching Staff X X X
Admin Staff X X X Admin Staff X X X
3rd Party Users X X X 3rd Party Users X X X
Communication between selected Senior Students will
* be allowed on a case by case basis.
Billing Solution
The Lync Server
Monitoring and Archiving
role can provide call
duration information
However, it doesn’t
natively provide billing
information that users
can use to apportion call
charges to different
parties
Dell built a billing engine
upon SQL Reporting
Services to provide user
friendly billing
Deploying Lync 2010 Phone Edition
Devices
All teachers were issued with Jabra GN2000
headsets
Deployed Lync Phone Edition handsets (Aastra
6725ip) to school leadership team, admin staff,
and a subset of teachers
Also deployed Lync Phone Edition handsets (Aastra Common Area Phones
Aastra 6721ip
6721ip) as common area phones around the
school
Lync Server provides a Device Update Service –
used to automatically update firmware on the
Phone Edition handsets
Desktop tethering vs. PIN sign-in
PIN sign-in issue and resolution: Personal Phones
DHCP Helper on network switch must support Option 43. Aastra 6725ip
Even if it does, make sure you test it.
Certificate SAN Capacity Considerations
Subject Alternative Name Site / School SIP Domain
(SAN) field in a standard Central Server countyschools.org
X.509 certificate is limited Farm
School A schoola.countyname.sch.u
to 1024 characters School B k
schoolb.countyname.sch.u
School C kschoolc.countyname.sch.u
Certificates with an
School D kschoold.countyname.sch.u
extended SAN field can be
School E k
schoole.countyname.sch.u
purchased from commercial
School F k
schoolf.countyname.sch.u
Certificate Authorities such
k
as GoDaddy
Impact of having different
SIP and email addresses,
e.g. Exchange UM pick-up
limitations on Lync 2010
Proxy and Firewall Issues
Be conscious of all the URLs
needed by both Lync and
Exchange
Ensure any web proxies in
place on the network do not
block or rewrite these URLs
Routing UM traffic through
TMG
Symptom: External users could
not leave voicemail messages
as calls would be dropped after
5 seconds
TMG determined the media
streams were DoS attacks and
blocked them
Fix: Create rule to specifically
allow media port range 1024
through 65,535 between
Mediation Server and UM
Server
Note: Creating a rule to allow
Important Lessons Learnt
Ensure you choose UC Optimised headsets
Become best friends with Snooper, Wireshark and
other network analysis tools – you will need them…
Don’t assume anything with regards to network
configuration, e.g. firewalls, DHCP relay agents –
Test Lync thoroughly on the live network before
going live
Don’t neglect end-user training - To get the
maximum out of Lync requires a mind set change
 © 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U. S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be
a commitment
on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Session Evaluations
Tell us what you think, and you
could win!

All evaluations submitted are

automatically entered into a daily prize
draw* 

Sign-in to the Schedule Builder at

http://europe.msteched.com/topic/list/
  
* Details of prize draw rules can be obtained from the Information
Desk.
 
 
 © 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U. S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be
a commitment
on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.