Load Balancers
One of the big differences between LCS and OCS is the need for hardware load balancers for the Enterprise pool. You can use a load balancer that supports SNAT (source network address translation) or DNAT (destination network address translantion). SNAT is recommended due to ease of deployment. SNAT is also limited to 65K users so if you have more users you need to have an SNAT IP address for each group of 65K users. So if you were deploying OCS for 100K users you would need two SNAP IP addresses.
Why not NLB? http://blogs.technet.com/toml/archive/2005/05/03/404430.aspx
Timeout values and best practices: http://blogs.technet.com/toml/archive/2005/08/06/408754.aspx
If you are deploying in an expanded pool configuration the FE servers are placed in a distinct IP subnet, the Web Conf, A/V and Web Component servers must reside outside this subnet.
A load balancer for an Office Communications Server 2007, Enterprise Pool must meet the following requirements:
- Expose a VIP Address through ARP (Address Resolution Protocol). The VIP must have a single DNS entry, called the pool FQDN and must be a static IP address.
- Allow multiple ports to be opened on the same VIP. The following ports are required.
Hardware load balancer ports that are required for Office Communications Server 2007
| Port Required |
Virtual IP |
Port Use |
|
5060 |
Load balancer VIP used by the Front End Servers |
Client to server SIP communication over TCP |
|
5061 |
Load balancer VIP used by the Front End Servers |
Client to Front End Server SIP communication over TLS
SIP Communication between Front End Servers over MTLS |
|
135 |
Load balancer VIP used by the Front End Servers |
To move users and perform other "pool" level WMI operations over DCOM |
|
444 |
Load balancer VIP used by the Front End Servers |
Communication between the internal components that manage conferencing and the conferencing servers |
|
443 |
Load balancer VIP used by the Web Components Server |
HTTPS traffic to the pool URLs |
- Provide TCP-level affinity. This means that the load balancer must ensure that TCP connections can be established with one Office Communications Server in the pool and all traffic on that connection will be destined for that same Office Communications Server.
- Each Front End Server must have an IP address that is directly routable within the internal network (specifically to allow communications between Front End Servers across different pools).
- The load balancer must provide a configurable TCP idle-timeout interval with its value set to 20 minutes or greater. This value must be 20 minutes or higher because it should be above the following values:
- Maximum SIP connection idle timeout of 20 minutes (this is the major determining value).
- SIP Keep-alive interval 5 minutes.
- Maximum REGISTER refresh interval of 15 minutes in absence of keep-alive checks.
- Enable TCP resets on idle timeout; also disable TCP resets when servers are detected to be down.
- Front Ends within a pool behind a load balancer must be capable of routing to each other. There can be no NAT device in this path of communication. Any such device will prevent successful RPC between Front End Servers within a pool.
- Front Ends behind a load balancer must have access to the Active Directory environment.
- Front Ends must have static IP addresses that can be used to configure them in the load balancer. In addition, these IP addresses must have DNS registrations (referred to as Front End FQDN).
- Any computer running Office Communications Server 2007 administrative tools must be able to route through the load balancer to both the Pool FQDN as well as the Front End FQDN of every Front End in the pool(s) to be managed. In addition, there can be no NAT device in the path of communication to the Front Ends to be managed. Again, this is a restriction enforced by the usage of the RPC protocol by DCOM.
- The load balancer should support a least-connections-based Load balancing mechanism. This means that the load balancer will rank all Office Communications Server servers based on the number of outstanding connections to each of them. This rank will then be used to pick the Office Communications Server to be used for the next connection request.
- The load balancer must allow for adding and removing servers to the pool without shutting down.
- The load balancer should be capable of monitoring server availability by connecting to a configurable port for each server.
.gif) Important: |
| The monitor for ports 135 and 444 should open TCP connections to port 5060 or 5061 for determining server availability. Attempting to monitor ports 135 and 444 on the servers will cause the load balancer to incorrectly detect these servers to be available because these ports are open even though Office Communications Server is not running.
|
