Access and SSL issues?

Zero Trust Access
1

Hello,
I have a question here. I currently use hostinger for my host. However, When SSL needs to be renewed it says it’s blocked. because of CF access.

Screenshot 2023-01-01 at 10.58.15 AM
Screenshot 2023-01-01 at 10.58.15 AM2066×846 280 KB
censored domain as i’m unsure if it’s allowed or not. But, I want to do is use Cloudflares SSL (The free ones) So I don’t have rely on hostinger’s system but also keep a part of my site behind CF access. How would I go about making it where the SSL renews while the part of the site is locked behind access? Can someone please advise.

2

Hey Nathan,

I am not certain of how you can keep Lets Encrypt active without using ACME certificates, but the way I would recommend achieving your goal would be to issue an Origin certificate from Cloudflare and use that. Your site will not have SSL if someone visits it directly by going to your hosts public IP, but anytime Cloudflare makes a request to your Origin it will be able to complete validate the connection and protect all traffic.

You can even take it a step further and require Authenticated Origin Pulls where your server will reject any non-Cloudflare sourced traffic.

Authenticated origin pull · Cloudflare SSL/TLS docs.

Let me know if this helps!

Best,
Sean Mitchell