It seems I'm still having issues with S2S encrypted connections which fail in the outgoing direction with OpenFire. The problem seems to be related to Dialback over TLS, and if encrypted connections are enforced, outbound connections can't be established (breaking communication for my users).
Example:
| 2014.02.07 11:53:29 org.jivesoftware.openfire.server.ServerDialback - ServerDialback: OS - Ignoring unexpected answer in validation from: is-a-furry.org id: 646d148e-6d07-4ffb-8670-2b9b69e99447 for domain: palemoon.net answer:<stream:features xmlns:stream="http://etherx.jabber.org/streams"><starttls xmlns="urn:ietf:params:xml:ns:xmpp-tls"><required/></starttls><dialback xmlns="urn:xmpp:features:dialback"/></stream:features> 2014.02.07 11:53:29 org.jivesoftware.openfire.server.ServerDialback - ServerDialback: OS - Ignoring unexpected answer in validation from: is-a-furry.org id: 646d148e-6d07-4ffb-8670-2b9b69e99447 for domain: palemoon.net answer:<stream:error xmlns:stream="http://etherx.jabber.org/streams"><policy-violation xmlns="urn:ietf:params:xml:ns:xmpp-streams"/><text xmlns="urn:ietf:params:xml:ns:xmpp-streams">Encrypted server-to-server communication is required but was not used</text></stream:error> |
My server checks out fine in the IM observatory (Grade A-) and some other servers connect just fine with encryption in both directions. Is this a problem with OpenFire, my specific installation/setup, or the remote server?