I’m still struggling, my last thread was closed so i couldn’t reply – i’m still really confused and struggling - every tutorial seems to refer to something that either doesn’t appear the same as what i’m looking at. At this point i’m just a bit lost…
so i logged into 123 reg, added the two Cloudflare nameserves i was assigned
these are my settings on the DNS settings again - apologies for being a massive noob for a 2nd time
well… i think i’m gonna have to go on 123 reg and delete my Cloudflare account - i’ve asked for help twice, been kindly offered help, but still struggling with it… i can see 5 lines of data in my screenshot - alls i’d require is someone to talk me through each line, and what to put in there. every tutorial i’ve read just talks me through something that looks different to what i’m seeing there
Your server is only listening on HTTP port 80, it’s not even listening on port 443, used for secure HTTPS traffic. Do you have someone you can contact about this? Server owner or whatever? If at all possible, they need to open port 443 and generate a valid SSL certificate for your site.
If this isn’t possible there are still options but it’s not ideal and it’ll affect what we do later.
From the screenshot you no longer have a DNS entry for your apex domain, I assume you converted it into the www entry, that’s fine, but now you need to create a new DNS entry for the apex domain. Don’t edit the www entry, you need to use the Add Record button which looks like this
apologies the text is small, had to zoom out to get it all into one screenshot
just as a side note - when this website was set up, i was given access to control it, but by the time i’d got round to sorting it all out, unfortunately the gentleman who’d set it up, had terminal cancer… hence why i’m in need of such help - but yet again, thanks so much for the help so far
it’s good that you have some level of access to the server, however I’ve never used cPanel and it also seems like the server is running IIS which I’m also not familiar with. You might have sufficient access to open port 443 and do SSL certificate stuff but I wouldn’t be able to tell you how.
123-reg.co.uk seems to be the actual owner of the server in case you want to try to contact them
Now, you do have other options…
if you absolutely can’t enable HTTPS on the server, it’s far from ideal, but you could use SSL mode “Flexible” to encrypt traffic between visitors and Cloudflare, while leaving traffic between Cloudflare and your server insecure. This isn’t great but it’s better than what you have now.
If you want to go that route:
In SSL/Overview set SSL mode to Flexible
In SSL/Edge Certificates, make sure Always Use HTTPS is on
Edit your Page Rule, change “http” to “https” in the destination URL and change the 302 temporary redirect into a 301 permanent redirect
Again, this is not end-to-end secure but it might be the best you can do with your current host
Another option would be to migrate your site to a better web host. Your site seems to be static (no server-side scripting) so it should be fairly easy to migrate. I can’t really make any specific recommendations as to a suitable host… Cloudflare Pages exists and I like it but if you’re a complete novice to web hosting, and have never worked with git repositories before, there would definitely be a learning curve.
If this was the only reason for Cloudflare, you can probably skip the whole Cloudflare thing.
What Cloudflare offers is certificates which work in the context of the proxies only. Their advantage over regular certificates is that they are easier to issue and can be valid for years. However, they do require you to proxy your site.
In general, it should really be your host who takes care of SSL. Cloudflare won’t be able to offer anything here, which you don’t need to have already on your server anyhow.
I think i’m getting there… thanks for the help guys – i’m on 123 reg now and i can see the SSL purchase section
@sandro - i think you’re right, after all this, i probably didn’t even need Cloudflare anyway! so i’m probably going to end up just resetting the name servers back to how they were on 123 reg, pre-me setting up a Cloudflare account.
Thanks though, you’ve helped me a lot. Cheers guys.
While there is nothing wrong with paid certificates (as long as they are reasonably priced - and that means not more than $10 a year), you should be aware that there are plenty of free offers. Aforementioned Cloudflare certificates, but also regular Let’s Encrypt certificates. They are perfectly free.
But yes, if SSL was the only reason, Cloudflare won’t offer you all that much I am afraid.