Deprecated - Why flexible SSL mode is not the best choice

This tutorial is deprecated in favour of Flexible - SSL/TLS encryption modes · Cloudflare SSL/TLS docs

Related Content:



The connection between your visitor and Cloudflare is secured, but the connection between Cloudflare and your server is not. You will not need a certificate on your server for this mode. This option is NOT RECOMMENDED.

Flexible makes your site only partially secure - it encrypts the connection between the visitor and Cloudflare - this means they see the :ssl: in their browser and the site leaves the impression that it’s secure! However, the connection between Cloudflare and your origin server is unencrypted and traffic can be intercepted there.

Even if you wish to pursue an insecure connection, Flexible SSL causes other problems for sites configured for HTTP at the host such as Mixed Content errors, Redirect Loops, or even completely breaking your website.

What to do about it:

You should install an SSL certificate on your server and set the SSL mode to “Full (strict)”. This fully encrypts the traffic between both the user and Cloudflare and between Cloudflare and your server.

You can use a free Let’s Encrypt certificate, generate a free Cloudflare origin certificate (SSL/TLS app), or use a paid certificate.

This is needed to make your site fully secure and is essential if you process any user submitted (e.g. logins) or personalized data through your site.

Related Content:
Why you should choose Full Strict, and only Full Strict

Tutorial Reference: CT-32

Reviewed: 08/22

This is a Community Tutorial. Most are wiki posts, so can be contributed to by Regulars and MVPs here. If there is a tutorial you would like to see, you can request one here.

If you would like to provide any feedback on this tutorial, please post in the #Meta category, tag your post #TutorialFeedback and let us know the Tutorial Reference above.

Other great resources on this community include the Community Tips. These address best practices when configuring Cloudflare, how to fix issues you may see, and tools to troubleshoot. You can also view Expert Tips, great posts on the community from people in the know that may help you with your issue.

We encourage users to check out these great resources and the Cloudflare Support Centre before posting.