I want to set up our 3 FE servers so the go through our HW load balancer. From what I have read so far, the recommended solution is to LB the SIP traffic using DNS but LB the web services through the HW LB. In order to do this, I need to override the web services URL but the problem with that is I don't have a name in my certificate available. Right now, the pool name and the web services name are the same. Lyncpool.domain.com.
If I override the web services URL, the name I choose has to be in the certificate Lync created. If I wanted to go this route, what should I do?
Or, I can just pass everything through the HW LB. Both SIP and web services traffic. Not sure what ports I would need to allow but shouldn't be too hard to figure out. Any advice would be appreciated.