I’ve running an unraid server behind a pfsense firewall.
Unraid is running SWAG which is acting as a reverse proxy, and a tiny webserver. ( Nothing really but a splash page)
I’ve configured SSL certificates, I’ve forwarded 80 and 443 to my swag container which handles the reverse proxy for any wildcards I plan to add down the line.
I can access my swag landing page via public IP, but not by URL.
I’ve got A record configured, which gets routinely updated via cloudflare docker container, and a www cname point to @.
When I try and navigate to my url, I get a cloudflare 522 error.
On my pfsense box I’ve uninstalled PFblocker, thinking that may have been the issue.
I have run packet captures on the internal host IP address, and see the TCP packets for 80 and 443 get to the host just fine. So there is no blocking of cloudflares IPs.
So, your Website is not secured?
May I ask before moving to Cloudflare, was your Website working over HTTPS connection or not?
If yes, is the SSL certificate self-signed or from Let’s Encrypt, or purchased maybe for your domain name + www prefix + some other possible (or not) sub-domain?
May I ask what SSL option have you got selected under the SSL/TLS tab at Cloudflare dashboard for your domain ( Flexible, Full, Full Strict … )?
Regarding Cloudflare 522 error, may I suggest you to try looking into below articles to troubleshoot the issue:
Both are proxied and set to ?
From your screenshot I see:
HTTPS → response status of 400.
May I ask if you can post a screenshot of this 400 error? Is it coming from your origin host/server or rather from Cloudflare?
How about below two options at Cloudflare dashboard for your domain name?: