Blocking Media over VPN
In fact, organizations deploying Lync Edge services should be going out of their way to avoid the possibility of clients connecting a media stream over the VPN tunnel. Lync clients always prefer a direct peer-to-peer connection when negotiating a call, but they don’t have any logic to determine whether they are on a VPN connection. So when a user establishes a VPN and then tries to call a user on the internal network, the two clients will think they should connect peer-to-peer instead of relaying their traffic through the Edge Server.
Depending on the VPN technology, organizations can use a combination of defined port ranges, IP address ranges, and source executable names to effectively block Lync clients from connecting ...
Get Microsoft® Lync® Server 2013 Unleashed Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
