Enable SNI breaks the connection between cloudflare and my server

evald80 · December 2, 2020, 4:19pm

Hello,

i have a web app with lets encrypt cert and on the panel of cloudflare is set “Your SSL/TLS encryption mode is Full (strict)”. Everything is wotking perfectly.
The problem is that, If i enable on the IIS the option “Require server name identification”, it will break the connection between the cloudflare server and my web application. Why is that?

i need to add other web application on 443 port with another certificatre on this webserver and this option must be enabled in order to make it work the setup.

any idea?

thank you

sandro · December 2, 2020, 4:26pm

What error do you get? I seriously doubt Cloudflare’s proxies do not send the host name in the SSL connection, that would essentially break most sites.

Does your site work if unproxied?

evald80 · December 2, 2020, 5:08pm

yes, it is working even if unproxied and in both cases, with and without the SNI enabled.

btw, now i retried and it worked. Maybe it was a temporary problem…i have no idea. Is it possible to check logs on cloudflare to uinderstand what happened?

sandro · December 2, 2020, 5:10pm

Cloudflare does not have these logs. However if it is working now it most likely was a temporary issue with your server. Cloudflare does support SNI.

Glad it is working now.

system · December 3, 2020, 5:10pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Topic		Replies	Views
IIS 6.0 and Cloudflare 525 Errors Getting Started	12	2409	October 14, 2021
Server Name Indication Disable DNS & Network	2	2598	May 1, 2019
Let's encrypt SSL and cloudflares SSL Security	5	2471	October 2, 2019
How to enable encrypted sni from cloudflare cdn to source server Security	4	39	February 25, 2025
Cloudflare SSL without using Cloudflare nameservers Security	4	2588	May 24, 2020

Enable SNI breaks the connection between cloudflare and my server

Related topics