SSL CLI Troubleshooting
This afternoon I setup nginx to act as a pop3/imap/smtp proxy w/ SSL. During the setup process it was necessary to test the services via CLI. While its fairly simple to test non-encrypted services, “telnet xx.yy.com 995” doesn’t exactly work. You can even verify the SSL cert chain validity if you’ve got a chain available.
openssl s_client -CAfile ca-certificates.crt -connect ciscodude.net:995
This blog post from KutuKupret was very helpful in the process.
 | Theodore Baschak - Theo is a network engineer with experience operating core internet technologies like HTTP, HTTPS and DNS. He has extensive experience running service provider networks with OSPF, MPLS, and BGP. |