stpetero require the use of TLS for both client-to-server and
server-to-server connections, preferably with authentication
(RFC 6125) but as a fallback using unauthenticated encryption
in the form of TLS plus Server Dialback
stpeterbut you're right
stpeterI just changed "full encryption" to "TLS encryption required"