User Tools

Site Tools


OpenSSL has a command that implements a generic SSL/TLS server which listens for connections on a given port. This is useful if you have a client you want to test with SSL. To run the test server, you need a host certificate and corresponding private key. If you don't have these yet, there are instructions above for generating a self-signed certificate.

When you run the test server, you must specify a port to listen for connections. Make sure you have adequate permisisons for this port (e.g. open the firewall for the port). Here's a simple openssl command for starting a secure server:

        > openssl s_server -accept 9000 -cert hostcert.pem -key hostkey.pem
        Using default temp DH parameters
        Using default temp ECDH parameters

The server will run until it receives a disconnect signal, for example by typing <CTRL>-C. There are many other options for the test server, such as requiring client certificates, starting a basic web server, disabling certain SSL or TLS protocols, etc. For a full list of command line options, run man s_server.

howtos/run_a_test_server.txt · Last modified: 02/12/2018 20:34 by