500 or some kind of 403

Hello my website appears to be having some kind of error that is prevent me and my guests to viewing my main website and I’m using Cloudflare’s DNS and SSL. I’ve contacted my Web Host provider and they given me this info:-

After verification, the website xxx returns the error 403, here is
the diagnostics:
–2020-01-28 10:30:33-- xxx/
Resolving xxx (xxx)… 104.28.3.173, 104.28.2.173,
2606:4700:3032::681c:2ad, …
Connecting to xxx (xxx)104.28.3.173:80… connected.
HTTP request sent, awaiting response… 301 Moved Permanently
Location: xxx [following]
–2020-01-28 10:30:34-- xxx
Connecting to xxx xxx)104.28.3.173:443… connected.
HTTP request sent, awaiting response… 403 Forbidden
2020-01-28 10:30:34 ERROR 403: Forbidden.

What is more, the domain name points to external server:
;; ANSWER SECTION:
xxx 80 IN A 104.28.3.173
xxx 80 IN A 104.28.2.173
NetRange: 104.16.0.0 - 104.31.255.255
CIDR: 104.16.0.0/12
NetName: CLOUDFLARENET

I’m not quite sure what had happened but could this be a problem with the Firewall or DNS from Cloudflare?

Can you share the domain name? Looks like a firewall block on your origin.

apg-clan.org

Looks to be some issue with the certificate on your origin server, can you set ssl to Flexible for the time being to see if we can side-step the error?

(Long term, Flexible is not the best setting to use, options are described here, https://support.cloudflare.com/hc/en-us/articles/200170416-End-to-end-HTTPS-with-Cloudflare-Part-3-SSL-options)

I’ve now set it to Flexible mode.

Thank you, I’m still seeing the error. Can you disable TLS 1.3 on the Edge Certificates tab of the SSL/TLS app on the cloudflare dashboard?

Done.

Thank you, still an issue and settings look great. The 500 error occurs because your origin server (your web host) is returning this code to us, and Cloudflare returns this code in turn to your visitors. Can you contact your host to see the errors in their logs?

Reviewing your server’s HTTP access and error logs is a great place to start when these errors occur as they should confirm the response code is being returned by your web server (this is visible in your access logs) and give some indication as to why (this is visible in the error logs).

Well I’m not getting any replies from OVH yet but I think there maybe a bug in the OVH Web Panel as I cannot seem to remove the ovh.net Name Servers, for some odd reason. The OVH Web Panel under the DNS tab says "Our systems have detected errors while checking your zone. The latest amendments were therefore not taken into account. To remedy this, please correct the following problems:

line 10: *.apg-clan.org: invalid NS owner name (wildcard)"

OK I had a reply from OVH but they are saying that they don’t understand those logs that I’ve relayed from Cloudflare and don’t have further control…

Thank you for your response.

Your domain and website apg-clan.org is managed outside of OVH, hence, I do
not understand what logs you are referring to. For the logs of the server the
domain points to, you should contact Cloudflare.

For any other questions or concerns, please feel free to contact us through a
support ticket or by phone.

I’m kinda struggling to figure out why this is happening. However I suspect it could be a problem with my vBulletin forum software, but I cannot see any reasons why it would be behind this 500/403 error.

Hi @robocop, thank you. On the SSL/TLS app of the cloudflare dashboard, overview tab, can you set ssl to Flexible? It is currently off and causing a redirect.

Yes sorry I’ve just been trying to figure what else is happening and seeing how it reacts without SSL. its back to Flexible now.

Got it, thank you.

Ideally, the server access logs for your origin server is where you’d see the error. Let’s also loop in Cloudflare Customer Support to see if they can diagnose more detail on the error.

To contact Cloudflare Customer Support, login & go to https://dash.cloudflare.com/?account=support and select get more help. Please give Support a link to your Community post and share the ticket number here as I’d like to keep an eye on it.

They said from this automated message under ticket #1826275 :-

Thanks for writing to Cloudflare Support.

A HTTP 500 error is a server side error that means that the origin web server had an error during the request. Cloudflare does not generate 500s, so this would indicate something is not configured correctly with your hosting provider. The best next steps would be to work with your hosting provider to identify the error that occurred by examining your error logs.

This is an automated response which we hope has answered your question. If you need further assistance, simply reply to this email to reach a Cloudflare Technical Support Engineer.

Search the Cloudflare Community for advice and insight.

Can you/did you reply to the automated message? When you reply, ask Support to escalate the ticket to an Engineer for review.

Not yet but I will - soon as I double check things from OVH.

1 Like

Cloudflare does not generate any 4xx error code, a 403 would indicate something is not configured correctly with your hosting provider or your client is sending something incorrect. The best next step is to generate a HAR file and send this to your hosting provider to identify what potential misconfiguration is in place. More details here, https://support.cloudflare.com/hc/en-us/articles/115003014512-4xx-Client-Error#code_403

Well also I might need to contact vBulletin to see if my forums is needing a fresh installation as I cannot seem to load AdminCP webpages or anything linked to vBulletin due to this error.

1 Like

Hang on! I’ve just found out one of the files from my website was missing the class_core.php file for DBTech SEO plugin for vBulletin…but for some odd reason it was deleted. Luckily I’ve backed up my web files recently in December 2019. I don’t know how that missing .php file from DBTech vanished…

1 Like

Hello is it ok to close this topic please? I think that will do for now thanks. If you got any tips or small advice for me, do feel free.

1 Like