I just want to see if others people out there get also sometimes a 525 error (on http call for resources)
It does not happen consistently but I got it quite a couple of time on http call for resource (ie image, script) while making publishing modification on the website https://datacadamia.com
I tried to modify the SSL connection from Full (Strict) to another lowest level but I got an error 500 back while navigating.
For now, I have paused Cloudflare on the website, this is the only way that I have found to avoid this error.
A 525 typically indicates a broken SSL setup. I’d suggest to make sure the site loads fine again, then check that it loads on HTTPS as well and only then unpause Cloudflare.
That I’d leave unchanged and on “Full Strict”. This won’t fix a 525, the 525 is something you need to fix on the server.
Sorry. I have re-enable cloudflare. The site is no more down for sitemeer. I really don’t know why.
I’m going to try to understand why it’s going down.
That certainly explains why it did not work when unproxied.
Anyhow, right now it seems to work just fine. Double check your server configuration and make sure that your certificate is properly configured and you do not have e.g. a second configuration without a certificate.
I see now better what the Pause Cloudflare on Site is doing on DNS level.
The IPS cloudflare list that I gave to the server firewall is the good one.
(It was working on my side because I was on a accepted network as incoming connection).
I’m working regularly on this website to modify content, the last configuration has happen month ago and I got this behavior only today.
The same page after a reload would load the resources without problem. It’s much more a transitory problem that I got a couple of time.
If you get it intermittently that would mean your server drops the connections at times and/or returns an invalid SSL response, which is why I mentioned to double check that on your side.
What you could try is to remove your firewall rules and allow all IP addresses to access your server. If you then do not experience the 525 any more you are most likely blocking certain Cloudflare datacenters.
Thanks for the suggestion on Community Tip, the purpose of our firewall rules is to avoid bad agent and that’s why we are in first instance on cloudflare (to get a badbot, spambot wall)
If you are the site owner and you’re only seeing errors intermittently,
this suggests the TCP connection between Cloudflare
and your origin is being reset during the SSL handshake causing the error.
Ask your hosting provider/system administrator to check if there are any server issues.
Reviewing your webserver access/error logs would be a good place to locate this information.
The errors did not appear immediately, I had to wait a couple of seconds/minute to get a 525 from the browser. A SSL Handsake fail would be immediate, no ?
