To start everything works fine for inside clients and VPN clients.
I have opened port 7443 for using Red5 Sparkweb (we get certificate error, but that we can accept and go ahead and connect). From my understand using this encrypts the user/pw that is used to sign onto the server.
When I am off the VPN I can connect fine with the Spark client to the Openfire server. When I try to start a audio/video call or Video Roster I do not get connected to server (I can see by doing a netstat -i that it is trying to use port 7070). If I open port 7070 on the firewall everything works correctly.
My question is how do I make the Spark Red5 plugin use the encrypted port of 7443? Or do I need to worry about that and just leave 7070 open as the username/pw has already been sent via the Spark client already?
here is a nice simple way to add ssl to any server its called stunnel witch you can tunnel threw ssl to any server port pop imap https is very simple to use downloal install put your key and certs in the main directory set your accept port and connect port and you are up and running its very fast I use it on apache http tomcat and the openfire http my mail server all from one ssl key and certs try it out you will like it you can get it here it will make your connection to the openfire threw the stunnel will will connect threw openfire 7070 and the stunnel will do the ssl its very fast I have moved sparkweb to my tomcat and use the stunnel and its very fast you can try it out here
I hope you like this it has made ssl very simple for me Bruce