We’re experiencing issues with Let’s Encrypt SSL renewals with sites we’re using Cloudlfare on. Our techs at Dreamhost say the encryption mode is correct, but Cloudflare is blocking Dreamhost’s SSLbot causing the SSL to not renew. Any ideas on how to fix this would be greatly appreciated.
What steps have you taken to resolve the issue?
Talk to Dreamhost, post in Cloudflare “community”.
Was the site working with SSL prior to adding it to Cloudflare?
Thanks Paul, that’s what we’ve been doing as well…was hoping for something better. We’ve decided to move our SSLs to Cloudflare instead of Dreamhost/Let’s Encrypt so we won’t need the extra steps down the road.
If you learn how their SSL bot works, you should be able to adjust your Cloudflare configuration to not interfere with the process. Similar accommodation is necessary for using the EFF’s certbot with an HTTP-01 challenge on a Cloudflare proxied site.