Hi,

I have Lync 2010 issue when people in the office can make  pstn calls via Lync when in the office, or on the VPN, but if connected over the edge server (for instance if using internet from external) it doesn't work but IM still works its just he calling that's not. Basically the call is placed and when it is answered there is ten seconds of silence and then the call drops no sound at all.

- I checked ASA and everything seems fine, nothing been changed.

- Checked Certs and there all fine and active.

i'm not sure what else to check. It was working before but all of a sudden its not.

Snooper log

ms-client-diagnostics: 23; reason="Call failed to establish due to a media connectivity failure when one endpoint is internal and the other is remote";CallerMediaDebug="audio:ICEWarn=0x80120,LocalSite=X.X.X.X:3304,RemoteSite=X.X.X.X:49623,RemoteMR=X.X.X.X:58631,PortRange=1025:65000,RemoteMRTCPPort=58631,LocalLocation=1,RemoteLocation=2,FederationType=0"

please help.

• Edited by pluto67 17 hours 35 minutes ago

When you call internally in office or on the VPN, the calls will not go through Edge server. However when you call from external the calls will use AV interface on Edge Server. Please make sure all required ports opened on edge server.

Check the blog post for better understating ports requirements: http://blog.schertz.name/2012/07/understanding-lync-edge-server-ports/

Hi 

From your error it looks as though call setup is fine, just you're not able to establish audio between and endpoint that is external and your internal gateway.

This is confirmed with the ICE warning flag. 

It is likely that the SIP messages in the call setup is telling the endpoint to go to device X to establish media, possibly by private IP or DNS name that is not resolvable or routable from that location. Check if you are performing media bypass and if you are, disable it. This will force all audio / media via the front end server. 

Also check that the edge server has the FE FQDN in its hosts file for DNS resolution

Also check the call setup messages from the SIP log when trying to establish the call to find where the media is being sent to as this will provide the clue as to what is going on.

Also check that the edge server has a static route to the subnet that the gateway is connected to.

thanks

Hi Tek,

Yes I know it will use the AV interface, and I did check the ports they are all fine.

Can you give me what ports that should be configure for this to work ?? So i can see if im not missing anything .

thanks,

Hi Mark,

Thank you so much for looking into this, to be honest I just started working with Lync, so im not 100% familiar with it yet.

So ya when I test, I can call my cell .. it rings and than when I pick up it disconnects after 5 seconds it says connecting call and never connects.

Media Bypass is disabled.

The record is already in the host file.

the call setup messages log, are they the same as what I provided above ? using snooper ?

on the edge server we have two NICs 1 internal and 1 external. The External has a gateway but the internal doesn't.

I also noticed that on the FE control panel - topology - Edge server - edge service that the Audio/Video Edge service external FQDN is not set

Internal Interface FQDN not set

Hi

That will be you're issue then. You will need to publish your AV external URL in your topology and also add in your edge server's public IP in the topology if you use NAT. 

You wont need to modify your certificate as the AV service doesn't require it.

The ports you need for the AV service are

TCP 443 inbound

UDP 3478 Both ways

50000-59999 - TCP and UDP Both Ways

Once you have published your topology, re run the deployment wizard on the edge server (step 2) and restart the Lync services.

This should solve your issue

Thanks

Hi Mark, 

where can I publish my external URL in the topology ? also where to add the public IP ? because I do use NAT

I tried this powershell command, but i dont think it worked

Set-CsMediationServer -Identity MediationServer:standard.test.com -EdgeServer edge.test.com

for example for ports

when you say TCP 443 inbound - you mean 

source = any

port = tcp443

destination: the edge server right ? should I be selecting the public ip(example 66.125) or internal/external ip(example 10.10.10.20) ?

thanks,

Hi

So what you will need to do is Open Topology Builder. In your site expand the Lync XXX where xxx is 2010 or 2013 whatever you use. Go to Edge Pools and click on your edge server. Edit its properties. scroll down until you see your external URL settings for access, webcon and AV Service. In the AV service enter the FQDN you want to use as the av url. e.g av.domain.com. In the external IP address enter the IP address (10.0.0.x) for example that sits on your DMZ. In the public IP setting add the public IP address you are going to assign to this AV service and use NAT to the 10.0.0.x address. Once complete publish the topology.

On your edge server, external interface add the 10.0.0.x address to that network adapter in addition to the 2 that should be there at the moment. NAT your AV public IP to the 10.0.0.x using the ports (source ports are any) to destinations. So in effect you NAT between your public IP and private IP.

Once this is done. From your Lync front end server run export-csconfiguration -filename c:\edge.zip and copy to the edge server

Then on the edge server run import-csconfiguration -filename c:\edge.zip

Then open the deployment wizard on the edge server and run the install / remove features > step 2 install or remove lync components

restart all Edge services Stop-CsWindowsService and Start-CsWindowsService

In your public DNS zone add an A record that matches the av FQDN and point it to the av public IP

After public DNS propagation has completed, audio should flow.

Mark,

when I try to import, im getting the below error message:

PS C:\Users\LyncAdmin> import-csconfiguration -filename c:\edge.zip
Import-CsConfiguration : Cannot find information about the local domain.
At line:1 char:23
+ import-csconfiguration <<<<  -filename c:\edge.zip
    + CategoryInfo          : NotSpecified: (:) [Import-CsConfiguration], Cann
   otGetDomainInfoException
    + FullyQualifiedErrorId : Microsoft.Rtc.Management.ADConnect.CannotGetDoma
   inInfoException,Microsoft.Rtc.Management.Xds.ImportConfigurationCmdlet

please advise.

thanks