A record updated but DNS not working


So earlier today we ran into an issue with our webserver.

We have an alternate server for a scenario just like this so I logged into Cloudflare and updated the A record for the domain to point at the IP address of the alternate server while we debug the issue on the main server.

4 hours later and the DNS (proxied) records still don’t appear to be working.

If I remove the proxy then it works but I obviously don’t want to do that.

I have been googling but haven’t found anything.
I logged a P1 ticket with CF but no response yet!

Any ideas why it’s not working?


Did you check by purging cache?

Hi, yes we did…

I think it is an SSL issue. Alternate server needs SSL cert in place…

Thanks for your reply though…


You probably require the Origin certificate on the server if you have already added the A record and that’s in place. It looks to be you are using the FULL strict mode of SSL. Is that so? If so, upload the origin certificate on the server and that should solve issue

Hi Neil,

We have recently come to the same conclusion.

I have generated an origin cert and have saved the cert and key files.

We are trying to install them on our AWS ubuntu apache server at the moment.

No joy yet. Any suggestions/tips greatly appreciated…



How do I generate a SSLCertificateChainFile ?



You can see that on Origin Certificate in the SSL Tab. Here is the document added. Check that out for more info.

Trying basic SSL condifg in apache but no joy.

LoadModule ssl_module modules/mod_ssl.so

<VirtualHost *:443>

ServerName www[dot]mydomain[dot]com

SSLEngine on

SSLCertificateFile “/etc/Cloudflare/cert.pem”

SSLCertificateKeyFile “/etc/Cloudflare/cert.key”

No apache errors just a 522 from Cloudflare…


Well… it looks to me you are real close.

Please check these again
Check the path
Check if you have blocked cloudflare ip in htaccess
Check if there is outage

Here is the cloudflare guide CommunityTip

Want to know about the ips? Have a glance here:

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.