How do you intercept server-side HTTPS traffic for debugging?

If you have a firewall appliance it probably has "TLS Inspection" (sometimes incorrectly referred to as "SSL Inspection"). You could setup PFSense [1] locally on the server to accomplish the same goals.

Note that this is universally agreed upon to be a bad idea. [2] [3] [4] [5]

[1] https://www.pfsense.org/ [2]https://www.schneier.com/blog/archives/2019/11/the_nsa_warns... [3] https://media.defense.gov/2019/Nov/18/2002212783/-1/-1/0/MAN... [4] https://insights.sei.cmu.edu/cert/2015/03/the-risks-of-ssl-i... [5] https://www.us-cert.gov/ncas/alerts/TA17-075A

I attach a debugger to the server