So I plan to allow our internal Openfire server to be accessible from the internet. I have disabled user registration and forced SSL connectivity for clients.. However I notice that the only port required to connect from outside our firewall is 5222 which is supposed to be the none-SSL connection. when I view connected sessions within the Openfire console I notice the little padlock next to status, but how can I verify the traffic and authentication is SSL encrypted? What is the difference between forcing SSL client connectivity and the encryption option within a specific chat session initiated by the end user?
Regards,
Adam Tyler