Closed soupdiver closed 1 year ago
I think what's confusing you here is that the SRV _matrix._tcp.<delegated_hostname>
record specifies the hostname <srv_hostname>
of a machine that should be delegated to,
but the given server <srv_hostname>
is contacted using Host: <delegated_hostname>
and is expected to provide a certificate for <delegated_hostname>
(!).
Since 0x23.me
and matrix.0x23.me
have the same IP address, you've not bought yourself anything over just using the original A
record.
To do what you want, you can consider using .well-known
delegation, which acts like a HTTP redirect for all federation traffic. Notably, the TLS certificate and Host
header will match what the well-known hostname says, not <delegated_hostname>
like in SRV delegation.
Since 0x23.me and matrix.0x23.me have the same IP address, you've not bought yourself anything over just using the original A record.
What I want to achieve is to run the server under matrix.0x23.me
but use foo@0x23.me
as my user.
To do what you want, you can consider using .well-known delegation, which acts like a HTTP redirect for all federation traffic
I didn't have this setup before and things worked. But... maybe something changed, not 100% sure tbh.
I tried using serve_server_wllknow
but it does not seem that easy.
My config:
server_name: "0x23.me"
public_baseurl: https://matrix.0x23.me/
serve_server_wellknown: true
...
Result: https://matrix.0x23.me/.well-known/matrix/server
But that seems to be the wrong way around? I suppose the file has to be served from 0x.23.me
and point to matrix.0x23.me
?
Do I have to setup that manually or can synapse do that for me properly? Or am I confusing something?
ok, seems I fixed it with config changes on my reverse proxy thanks!
I lately have an issue with my instance and Federation. I have setup a SRC record point from my domain to a subdomain
Federation however tries using the wrong hostname for connections.
Federation tester: https://federationtester.matrix.org/api/report?server_name=0x23.me
It seems to pickup my srv record that points to
matrix.0x23.me:443
but connection goes to0x23.me
🤔(hostname \"0x23.me\" path \"/_matrix/federation/v1/version\"): 404 page not found\n code=404 wrapped="
dns lookup