Lync Server 2013 中的端口摘要-DNS 和 HLB 负载平衡Port summary - DNS and HLB load balanced in Lync Server 2013

 

上次修改的主题: 2012-10-22Topic Last Modified: 2012-10-22

单个控制器的防火墙端口要求由用于从内部接口或反向代理的面向内部网络中的控制器建立通信的端口组成。Firewall port requirements for a single Director consist of the ports that are used to establish communication with the Director from the internal interface or internal-facing network of the reverse proxy. Microsoft Lync Server 2013 默认情况下需要从反向代理向控制器以及前端池和前端服务器打开端口 HTTP/TCP 8080 和 HTTPS/TCP 4443。Microsoft Lync Server 2013 by default expects ports HTTP/TCP 8080 and HTTPS/TCP 4443 to be open from the reverse proxy to the Director, as well as the Front End pool and Front End Server. 此外,还必须有会话初始协议 (SIP) 从边缘服务器内部接口到控制器以及前端池和前端服务器的通信。Additionally, there must be session initiation protocol (SIP) communication from the Edge Server internal interface to the Director and to the Front End pool and Front End Server. SIP 协议使用从边缘服务器到前端池和前端服务器的 SIP/MTLS/TCP 5061。The SIP protocol uses SIP/MTLS/TCP 5061 from the Edge Server to the Front End pool and Front End Server. 还必须创建一个允许从 Director、前端池和前端服务器到边缘服务器内部接口的 SIP/MTLS/TCP 5061 通信的规则。A rule that allows SIP/MTLS/TCP 5061 communication from the Director, Front End pool and Front End Server to the Edge Server internal interface must be created as well.

防火墙定义的单个控制器端口和协议Single Director Ports and Protocols for Firewall Definitions

角色/协议/TCP 或 UDP/端口Role/Protocol/TCP or UDP/Port 源 IP 地址Source IP address 目标 IP 地址Destination IP address 注释Notes

HTTP/TCP 8080HTTP/TCP 8080

反向代理内部接口Reverse proxy internal interface

控制器硬件负载平衡器 VIPDirector Hardware Load Balancer VIP

该通信最初由反向代理的外部端接收,并发送到控制器 HLB VIP 和前端服务器 web 服务。Initially received by the external side of the reverse proxy, the communication is sent on to the Director HLB VIP and Front End Server web services.

HTTPS/TCP 4443HTTPS/TCP 4443

反向代理内部接口Reverse proxy internal interface

控制器硬件负载平衡器 VIPDirector Hardware Load Balancer VIP

该通信最初由反向代理的外部端接收,并发送到控制器 HLB VIP 和前端服务器 web 服务。Initially received by the external side of the reverse proxy, the communication is sent on to the Director HLB VIP and Front End Server web services.

HTTPS/TCP 444HTTPS/TCP 444

控制器Director

前端池或前端服务器Front End pool or Front End Server

控制器 HLB VIP 与前端服务器或前端服务器之间的服务器间通信。Inter-server communication between the Director HLB VIP and the Front End Server or Front End Servers.

HTTP/TCP 80HTTP/TCP 80

内部客户端Internal Clients

控制器硬件负载平衡器 VIPDirector Hardware Load Balancer VIP

Director 向内部和外部客户端提供 web 服务。The Director provides web services to internal as well as external clients.

HTTPS/TCP 443HTTPS/TCP 443

内部客户端Internal Clients

控制器硬件负载平衡器 VIPDirector Hardware Load Balancer VIP

Director 向内部和外部客户端提供 web 服务。The Director provides web services to internal as well as external clients.

SIP/MTLS/TCP 5061SIP/MTLS/TCP 5061

边缘服务器内部接口Edge Server internal interface

控制器Director

从边缘服务器到控制器以及前端服务器的 SIP 通信。SIP communication from the Edge Server to the Director, as well as the Front End Servers.

MTLS/TCP/50001MTLS/TCP/50001

任何Any

控制器Director

集中日志记录服务控制器 ( # A0) 或代理 ( # A1) 命令和日志集合Centralized Logging Service controller (ClsController.exe) or agent (ClsAgent.exe)commands and log collection

MTLS/TCP/50002MTLS/TCP/50002

任何Any

控制器Director

集中日志记录服务控制器 ( # A0) 或代理 ( # A1) 命令和日志集合Centralized Logging Service controller (ClsController.exe) or agent (ClsAgent.exe)commands and log collection

MTLS/TCP/50003MTLS/TCP/50003

任何Any

控制器Director

集中日志记录服务控制器 ( # A0) 或代理 ( # A1) 命令和日志集合Centralized Logging Service controller (ClsController.exe) or agent (ClsAgent.exe)commands and log collection