Hi all, Does XMPP support the idea of restricting certain types of s2s authentication by IP addresses or DNS names?
For example, I may want to permit SASL External over TLS communication with IP addresses, 1.2.3.4 and 5.6.7.8 but will allow IP address a.b.c.d access via dialback. My understanding is that in defining authentication methods on an XMPP server, it is all or nothing. That is, if SASL External and/or Dialback is enabled then all other servers have access to these possible authentication methods. From looking at the literature on Openfire and ejabbered, I cannot find such authentication granularity. regards, Paddy.
