Server Name Indication - UlricE/pen GitHub Wiki

Server Name Indication is a TLS extension which allows multiple virtual hosts, and multiple digital certificates, to coexist on the same IP address and port. It is available in Pen since version 0.27.4.

To enable SNI in Pen, all that needs to be done is this line in the configuration file:

ssl_sni_path /etc/pen/sni

Then add the private key, your certificate and the CA’s certificate to that directory, using this naming scheme:

[root@lb pen]# ls /etc/pen/sni
bilder.gullringe.se.ca bilder.gullringe.se.crt bilder.gullringe.se.key

Now any time a request comes in for bilder.gullringe.se, these files will be used for the negotiation.

The downside is that a reasonably modern browser is required.