Returned to my old plans of getting self-hosted xmpp server in my home network. Configured Prosody behind NAT with port forwarding. Got one quite strange bug: clients can connect from outside of home network, but can't connect from home network due to SSL error.
1 year ago
Just for history: solved the problem by changing the router to the one which can be flashed with OpenWRT. I have prosody xmpp server now! 路 1 year ago
@mp0 Thanks for the guide. As for your question, you can accomplish the same thing by using the device's IP address as the hostname the cert. For security reasons (internal IP address leakage), you might want to use a separate SSL cert for access from your LAN. 路 1 year ago
@tm85 My setup is based on this manual: https://landchad.net/prosody/ 路 1 year ago
@tm85 - yes, it looks like some error with passing hostname when connecting from local network. I'm wondering if it possible to setup default hostname for IP connections 路 1 year ago
By the way, could you drop me your prosody conf? I've been pretty unsuccessful in configurikg it myself 路 1 year ago
SSL certs are tied to a hostname. If you're connecting by IP address, whether locla or global, the certificate name check will fail 路 1 year ago