Best Practices for Securing Enterprise Voice in Lync Server 2010
Topic Last Modified: 2011-03-25
- Install the Mediation Server on a computer with two network adapter cards.
Note
Even if you configure the link between the Mediation Server and the media gateway for TLS, it is still good practice to further enhance security by configuring the Mediation Server with two network interface cards to separate its internal and external edges.
Configure the internal edge of a Mediation Server to correspond to a unique static route that is described by an IP address and a port number. The default port is 5061.
Configure the external edge of a Mediation Server as the internal next hop proxy for the media gateway. The external edge should be identified by a unique combination of IP address and port number. The IP address should not be the same as that of the internal edge; the default port is 5068.