Posted in AudioCodes, Skype for Business

Deploying AudioCodes Skype for Business Cloud Connector Edition (CCE)? What you need to know!

Plan your network design

  • Below design is based on AudioCodes M800 CCE
  • The two rear Ethernet ports will be used (GE1:Corpnet & Ge2:Internet)
  • Front Ethernet port will be used for GW/SBC

cce_network_design_v3-0

Prepare the required IP addresses

  • 6 Internal IP addresses
  • 1 External IP NAT’ed to 1 Public IP address
  • BaseVMIP is optional
  • You may put the gateway or SBC same range as Internal IP of the CCE or place it on your internal corporate network range (e.g. 192.168.1.10)
  • Below IP addresses are mere examples only

cce_ip

Public DNS Records

  • Other Office 365 DNS records should already be created at this point
  • SRV records are created as well

cce_publicdns

Office 365 with CloudPBX license

  • E5 license
  • E3 + Cloud PBX

Prepare the following Administrator during installation

VM ADMIN loremarc@contoso.com
Domain Admin loremarc@contoso.com
Safemode domain Admin loremarc@contoso.com
Office 365 Global Administrator loremarc@contoso.com

Prepare the Cloud Connector ini file

  • I prefer it to be pre-populated before starting the installation
  • Values will depend on above information
  • Each parameters are explained well here: https://aka.ms/deploycloudconnector

Public Certificate

  • Common Name: accesspool1.contoso.com
  • Subject Alternative Names: accesspool1.contoso.com, sip.contoso.com

Open the Required Firewall Rules

  • Here’s the drill, once you have finalize the network design make sure to let company’s Security team approve it as this part usually gets some exciting discussion.

Internal firewall

Source IP Destination IP Source Port Destination Port
Cloud Connector Mediation component SBC/PSTN Gateway Any TCP 5060**
SBC/PSTN Gateway Cloud Connector Mediation component Any TCP 5068/ TLS 5067
Cloud Connector Mediation component SBC/PSTN Gateway UDP 49 152 – 57 500 Any***
SBC/PSTN Gateway Cloud Connector Mediation component Any*** UDP 49 152 – 57 500
Cloud Connector Mediation component Internal clients TCP 49 152 – 57 500* TCP 50,000-50,019

(Optional)

Cloud Connector Mediation component Internal clients UDP 49 152 – 57 500* UDP 50,000-50,019
Internal clients Cloud Connector Mediation component TCP 50,000-50,019 TCP 49 152 – 57 500*
Internal clients Cloud Connector Mediation component UDP 50,000-50,019 UDP 49 152 -57 500*

External firewall – recommended configuration

Source IP Destination IP Source Port Destination Port
Any Cloud Connector Edge External Interface Any TCP 5061
Cloud Connector Edge External Interface Any Any TCP 5061
Cloud Connector Edge External Interface Any Any TCP 80
Cloud Connector Edge External Interface Any Any UDP 53
Cloud Connector Edge External Interface Any Any TCP 53
Cloud Connector Edge External Interface Any TCP 50,000-59,999 Any
Cloud Connector Edge External Interface Any UDP 3478; UDP 50,000-59,999 Any
Any Cloud Connector Edge External Interface Any TCP 443; TCP 50,000-59,999
Any Cloud Connector Edge External Interface Any UDP 3478; UDP 50,000 – 59,999

Once you have done above, you should be ready to start your installation! Hopefully, I could still have time to share my step-by-step installation on next blog 🙂

Stay tune! Cheers!

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s