powered by Jive Software

S2S Granular Authentication Choice Query

Hi all,

Does the Openfire XMPP server support the idea of restricting certain types of s2s authentication by IP addresses or DNS names?

For example, I may want to permit SASL External over TLS communication with IP addresses, 1.2.3.4 and 5.6.7.8 but will allow IP address a.b.c.d access via dialback.

My understanding is that in defining authentication methods on an XMPP server, it is all or nothing. That is, if SASL External and/or Dialback is enabled then all other servers have access to these possible authentication methods.

regards,
Paddy.