Hi,
I've got a working Lync deployment that's been running for a while with no issues.
I have just tried to setup federation access and I have enabled all the options in External Access Policy and Access Edge configuration.
My certificates are publicly certified and the online OCS test tool gives me a green result.
My DNS srv records are also ok (you can check - domain is iwsbeta.beta.co.uk)
However if I try to add an external user in Lync (that has a working federation configuration) I get presence unknown.
When I try to chat to the user I don't see anything hitting the edge server logs but on the front end server I am seeing the following error in the snooping tool
$$begin_record
LogType: diagnostic
Severity: warning
Text: Non-trusted source sent an FQDN/IP that doesn't match a routing table rule
Result-Code: 0xc3e93c5e SIPPROXY_E_ROUTING
SIP-Start-Line: ACK sip:user@externaldomain.com SIP/2.0
SIP-Call-ID: d8e90558fb5940c08a4bb0999c2d97bd
SIP-CSeq: 1 ACK
Data: user="user@externaldomain.com"
$$end_record
And then
TL_INFO(TF_PROTOCOL) [1]0C70.1370::03/13/2012-23:09:48.953.00003664 (SIPStack,SIPAdminLog::TraceProtocolRecord:SIPAdminLog.cpp(125))$$begin_recordTrace-Correlation-Id: 2566416163
Instance-Id: 00000491
Direction: outgoing;source="local"
Peer: 192.168.9.27:56512
Message-Type: response
Start-Line: SIP/2.0 404 Not Found
From: "Daniel Niasoff"<sip:daniel.niasoff@iwsbeta.co.uk>;tag=570954e9b0;epid=e64c8308f5
To: <sip:user@externaldomain.com>;tag=463944CA0A7A35EC34FC687DA6157810
CSeq: 1 INVITE
Call-ID: d8e90558fb5940c08a4bb0999c2d97bd
Authentication-Info: TLS-DSK qop="auth", opaque="55B167BF", srand="3DC835EC", snum="22", rspauth="f3686ecb7e31bc17793da93a82af21163001fefb", targetname="Dc01BetaLync.iwsbeta.co.uk", realm="SIP Communications Service", version=4
Via: SIP/2.0/TLS 192.168.9.27:56512;ms-received-port=56512;ms-received-cid=2700
ms-diagnostics: 1003;reason="User does not exist";TargetUri="user@externaldomain.com";source="Dc01BetaLync.iwsbeta.co.uk"
Server: RTC/4.0
Content-Length: 0
Message-Body:
$$end_record
I have nothing in my static routing table as you can see
PS C:\Users\lyncadministrator> Get-CsStaticRoutingConfigurationIdentity : Global
Route : {}
The only routes I have are for enterprise voice and they just match all numbers (^(\d*)$) and route to an external sip trunk.
Is doesn't appear to even be looking up the federated partners address?
Any ideas?
Thanks
Daniel