Returned to my old plans of getting self-hosted xmpp server in my home network. Configured Prosody behind NAT with port forwarding. Got one quite strange bug: clients can connect from outside of home network, but can't connect from home network due to SSL error.
2 weeks ago
@mp0 Thanks for the guide. As for your question, you can accomplish the same thing by using the device's IP address as the hostname the cert. For security reasons (internal IP address leakage), you might want to use a separate SSL cert for access from your LAN. 路 2 weeks ago
@tm85 My setup is based on this manual: https://landchad.net/prosody/ 路 2 weeks ago
@tm85 - yes, it looks like some error with passing hostname when connecting from local network. I'm wondering if it possible to setup default hostname for IP connections 路 2 weeks ago
By the way, could you drop me your prosody conf? I've been pretty unsuccessful in configurikg it myself 路 2 weeks ago
SSL certs are tied to a hostname. If you're connecting by IP address, whether locla or global, the certificate name check will fail 路 2 weeks ago