Table:

Thanks

Before we talk about DNS requirements, please understand your customers domain  infrastructure before proceeding with any deployment . 

Does your customer have a single domain that is used both internally and externally. If this is not the case then you need to consider how to address this. 

Now to DNS. 

You need a minimum of two SRV records 

1. Internal DNS.. 

_cisco-uds._tcp.domain

This SRV will point to your Uds server(s) 

2. External DNS 

_collab-edge._tls.domain

This will point to expwe server 

3. DNS A Records 

Expwe can be deployed either using a single NIC using dual NIC. Dual NIC is easier from a firewall perspective. 

If you are using a Dual NIC, then you need an A record for expwe in your internal DNS that will resolve to the internal ip address of expwe. This is what you will use for the traversal connection from expwc. 

You will also need Arecord for your Uds servers. 

Nb: it is better to deploy your cucm servers with FQDN,when deploying jabber due to certificate issues. If your  cucm is already deployed with IP address, the you need to add these IP to each SAN of your  csr request before sending the certs off to be signed by a CA 

Lots to consider.. Lots

Thank you for your support again,

let me discuss it one by one. for customer DNS domain, they have two:

example.local

example.com

but I asked them to add zone in the DNS to resolve the names as it they are example.com. and the names for UC server are

UCXXX.example.com.

In this case shall I consider my customer has one domain?

Your customer has two domains. One is routable example.com and the other is not.. example.local

I do not see how your UC servers are in example.com unless they have implemented split DNS. So you need to verify this as this is the only way jabber Mra works with this setup. 

I Think you mean by split DNS is, they have a local DNS server and a DNS in public. I think this is the scenario,

when I asked them to create the A records for my UC servers they said this is not routable by default but we can do it.

and I tested in my lab by creating forward lookup zone for example.com and I was able to resolve the names of my servers

It looks like they have already implemented split DNS. 

You need to do internal SRV  DNS query for Cisco-uds record and be sure it's setup as required 

what about cuplogin? do I need it? I think it's only for version 8.

I'm using 10

and for cisco-uds, I think I have to create a record for each Call manager node?

No you don't need cup-login. You don't  need to create a record for each cucm node.  Yiu should have at least two servers or load balancing. Jabber will use the serves defined in the Cisco-uds SRV record to discover the cucm servers for the user trying to login, so you do the need to Configure all of them