In This Chapter
• Firewall Requirements Overview
• Ports Required for Internal and External Access
• Using Network Address Translation (NAT) with Lync Server
Most companies deploy Lync Server 2013 so that they can support IM and conferencing services with users that connect outside the corporate network. To properly protect the Lync Server 2013 systems from attack, apply a layered approach to security. In the case of Lync Server 2013, this means a combination of local firewalls, network firewalls, reverse proxies, and a responsible methodology for provisioning access to shares and services.
This chapter lays out approaches for applying layers of security onto the Lync Server 2013 systems. Although securing a system and configuring accounts for least privilege can be a fair amount of effort, the benefits reaped in terms of security greatly outweigh the efforts.