Hi all. I’m hoping I am in the right place for your help.
I’m running a site on a cPanel shared hosting platform, for a not-for-profit social and flying club (https://bristolaeroclub.co.uk). Originally, the website was covered by an SSL certificate generated by the cPanel AutoSSL. Then, I created a cloudflare account and followed the instructions to get the website to use cloudflare, which included changing the nameservers.
It all seemed to be going fine, but in the not-too-distant past, club members started reporting that they couldn’t access the site, as they were given security warnings. The warning I have been made aware of is:
Although I believe there may have been more. This seemed to be isolated to only certain users and not, for example, all users with a certain browser, although the users that did have issues were generally using either the BT ISP, or a Microsoft browser, or both.
Yesterday, I did a server test on ssllabs.com. That test revealed that using the Cloudflare CDN SSL, the tests on IPv4 worked fine, whilst the tests on IPv6 failed. It then generated an ‘inconsistent server configuration’ warning.
I couldn’t understand why this was. However, when I checked the error log in my cPanel account, I saw this:
AH01630: client denied by server configuration
That does tally with the ‘inconsistent server configuration’ warning from SSL Labs. At the moment, since I have no clue how to solve the issue, I have redirected the nameservers back to the host (HostPresto, in the UK) and have reinstalled autoSSL, which seems on the surface of it to have solved the access issue for certain users.
My issue is, I really want to make use of the Cloudflare CDN, for the potential performance and security enhancements. I just can’t use it whilst it is blocking access to users. Now, I know the website did have an error with a plugin (long since uninstalled) whilst the Cloudflare SSL was active on the site, which coincides with the start of the issues with user access. Also, I had HTTPS redirects active with Cloudflare, but not HSTS.
I am new to the use of Cloudflare and so I would be really grateful if you could help me work out what the issue is, so that I can reinstall the CDN with the confidence that users won’t be blocked again. I am happy to answer any questions/provide additional information that may be of use, to get to the bottom of the issue. I am also happy to re-post the question with a different category, if I am in the wrong place.
Thanks in advance!