Zookeeper has slightly strange implementation of hostname verification which among other things seems to be using reverse lookup based on the pod IP address etc. This looks like something what can cause weird issues such as the one discussed in Strimzi#3111. We should add the two options for disabling hostname verification (ssl.hostnameVerification and ssl.quorum.hostnameVerification) to user configurable TLS options to make it easier to disable it. However, it should be of course still enabled by default.