On Thu, 2010-04-29 at 13:06 -0400, Tony Graziano wrote: > That's a very good question. MY logic tells me NO (wont work) if the > DNS ZONE is a different name than the internal one. I may be wrong, > but look at my question to user/developers on EXACTLY what my logic is > and asking for some confirmation (or rejection) of my logic. > > > If the ZONE name (SIPDOMAIN) is the same, I don't think it will matter > if the client can resolve it properly no matter where they are > located.
You are correct. When XMPP servers federate using TLS, the certificate at each end must match the domain name they thought they were connecting to. Some servers can play tricks with reverse DNS lookups and such, but that's pretty fragile and equally hard with private addressing. _______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-users sipXecs IP PBX -- http://www.sipfoundry.org/
