I am going to try to create a LDAP verification service. It would exists on the users side of the firewall and talk to the LDAP source on their side. The Service that accepts credentials is a known endpoint. The service on the user's side of the firewall could use xmpp transport to establish a connection. A couple of questions:

When using xmpp transport and the wsf would the data be send over a single tcp connection both directions?