IT tutorials
 
Applications Server
 

Microsoft Lync Server 2010 : Using Operating System Firewalls with Lync Server

1/15/2013 6:37:56 PM
- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019

In Windows Server 2003 SP1, Microsoft introduced an integrated firewall into the Windows operating system. As with most Microsoft products, it has improved with each iteration. Flash forward to Windows Server 2008 and you find that the integrated firewall is quite good. Lync Server does an excellent job of integrating into the Windows Server Firewall at the time of installation.

Layering an operating system layer firewall with a network layer firewall is an excellent way to improve overall security of a system with minimal expense. By layering these two together, if the network firewall becomes compromised, the attacker has to pierce the OS layer firewall to compromise the systems. Similarly, given that many attack vectors can come from within the company itself, the OS layer firewall offers protection from trusted systems that might become compromised.

Configuring the Windows Server 2008 Firewall for Lync Server

If the Windows Firewall is enabled and started at the time of installation of Lync Server components, the necessary exceptions will be created automatically.

Caution

Although many administrators are tempted to disable the Windows Firewall, it is certainly worth leaving it in place with the necessary rules configured. If you are convinced you don’t want to use the Windows Firewall, and don’t plan to use a third-party operating system layer firewall, leave the Windows Firewall service running, but configure the rules to allow all traffic to pass unhindered. This prevents possible problems interacting with the Windows Filtering Platform.


For administrators who installed Lync Server without the firewall on and want to enable it and backfill the rules, Table 1 details the rules created to support various Lync Server roles.

Table 1. Lync Server 2010 Firewall Rules
NameProgramProtocolLocal PortRemote Port
OCS SQL RTC AccessC:\Program Files\Microsoft SQL Server\MSSQL10.RTC\MSSQL\Binn\sqlservr.exeTCPAnyAny
OCS SQL RTC AccessC:\Program Files\Microsoft SQL Server\MSSQL10.RTC\MSSQL\Binn\sqlservr.exeUDPAnyAny
OCS SQL RTC AccessC:\Program Files\Microsoft SQL Server\MSSQL10.RTC\MSSQL\Binn\sqlservr.exeTCPAnyAny
OCS SQL RTC AccessC:\Program Files\Microsoft SQL Server\MSSQL10.RTC\MSSQL\Binn\sqlservr.exeUDPAnyAny
SQL BrowserAnyUDP1434Any
CS FTAC:\Program Files\Microsoft Lync Server 2010\File Transfer Agent\FileTransferAgent.exeAnyAnyAny
CS masterC:\Program Files\Microsoft Lync Server 2010\Master Replicator Agent\MasterReplicatorAgent.exeAnyAnyAny
CS OcsAppServer Host.exeC:\Program Files\Microsoft Lync Server 2010\Application Host\OcsAppServerHost.exeAnyAnyAny
CS ReplicaC:\Program Files\Microsoft Lync Server 2010\Server\Replica Replicator Agent\ReplicaReplicatorAgent.exeAnyAnyAny
CS rtcappsrvC:\Program Files\Microsoft Lync Server 2010\Application Host\OcsAppServerMaster.exeAnyAnyAny
CS rtcasmcuC:\Program Files\Microsoft Lync Server 2010\OCSMCU\Application Sharing\ASMCUSvc.exeAnyAnyAny
CS rtcavmcuC:\Program Files\Microsoft Lync Server 2010\OCSMCU\AV Conferencing\AVMCUSvc.exeAnyAnyAny
CS rtcdatamcuC:\Program Files\Microsoft Lync Server 2010\Web Conferencing\DataMCUSvc.exeAnyAnyAny
CS rtcimmcuC:\Program Files\Microsoft Lync Server 2010\OCSMCU\IM Conferencing\IMMCUSvc.exeAnyAnyAny
CS rtcmedsrvC:\Program Files\Microsoft Lync Server 2010\Mediation Server\MediationServerSvc.exeAnyAnyAny
CS rtcmeetingmcuC:\Program Files\Microsoft Lync Server 2010\OCSMCU\Web Meeting Conferencing\MeetingMCUSvc.exeAnyAnyAny
CS rtcsrvC:\Program Files\Microsoft Lync Server 2010\Server\Core\RTCSrv.exeAnyAnyAny
CS TCP13457AnyTCP13457Any
CS TCP135AnyTCP135Any
CS TCP443AnyTCP443Any
CS TCP444AnyTCP444Any
CS TCP4443AnyTCP4443Any
CS TCP445AnyTCP445Any
CS TCP80AnyTCP80Any
CS TCP8060AnyTCP8060Any
CS TCP8061AnyTCP8061Any
CS TCP8080AnyTCP8080Any
Remote Administration (NP-In)SystemTCP445Any
Remote Administration (RPC)%SystemRoot%\system32\svchost.exeTCPRPC Dynamic PortsAny
Remote Administration (RPC-EPMAP)%SystemRoot%\system32\svchost.exeTCPRPC Endpoint MapperAny
Remote Desktop (TCP-In)SystemTCP3389Any
Remote Service Management (NP-In)SystemTCP445Any
Remote Service Management (RPC)%SystemRoot%\system32\services.exeTCPRPC Dynamic PortsAny
Remote Service Management (RPC-EPMAP)%SystemRoot%\system32\svchost.exeTCPRPC Endpoint MapperAny
Secure Socket Tunneling Protocol (SSTP-In)SystemTCP443Any
World Wide Web Services (HTTPS Traffic-In)SystemTCP443Any
Windows Firewall Remote Management (RPC)%SystemRoot%\system32\svchost.exeTCPRPC Dynamic PortsAny
Windows Firewall Remote Management (RPC-EPMAP)%SystemRoot%\system32\svchost.exeTCPRPC Endpoint MapperAny
Windows Remote Management - Compatibility Mode (HTTP-In)SystemTCP80Any
Windows Remote Management (HTTP-In)SystemTCP5985Any
World Wide Web Services (HTTP Traffic-In)SystemTCP80Any


 
Others
 
- Microsoft Lync Server 2010 : Using Network Layer Firewalls with Lync Server
- InfoPath with SharePoint 2010 : Central Administration - Manage Form Templates
- InfoPath with SharePoint 2010 : Central Administration - Upload a Form Template
- Microsoft Dynamic AX 2009 : Developing Web User Interface Components (part 5) - BoundField Controls, Web Parts
- Microsoft Dynamic AX 2009 : Developing Web User Interface Components (part 4) - AxToolbar, AxPopup
- Microsoft Dynamic AX 2009 : Developing Web User Interface Components (part 3) - AxGroup, AxLookup
- Microsoft Dynamic AX 2009 : Developing Web User Interface Components (part 2)
- Microsoft Dynamic AX 2009 : Developing Web User Interface Components (part 1)
- SharePoint 2010 : Service Applications - Creating the Secure Store
- SharePoint 2010 : Service Applications - Managing a service
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us