Google's Project Shield and Cloudflare

user3194 · May 31, 2023, 5:32pm

Hey there,

I’m currently in the process of setting up Google’s Project Shield for my website. I managed to update the DNS settings, but I’m running into a bit of a snag. Whenever I make the changes, my website becomes unavailable and I encounter the error message: “We found your site’s origin, but it is not serving a valid certificate”.

I understand that the issue lies with my origin server’s settings, specifically the requirement for a valid certificate. Fortunately, I do have the appropriate IP address handy. However, I’m not quite sure where or how to apply these changes within Cloudflare’s interface. I should mention that I’m using the free version of Cloudflare, in case that makes any difference.

I’d really appreciate any guidance or help on this matter. Thanks a lot in advance!

anon9246926 · May 31, 2023, 10:03pm

Are you currently using Cloudflare in front of your site?

Given Step 3 of the set-up for Project Shield is to verify the host/origin IP address, my guess is putting this in front of Cloudflare isn’t going to work. Especially considering one of the things proxying through Cloudflare does it mitigate DDoS attacks.

If anything, setting the records for the server to DNS Only in Cloudflare is likely required.

system · June 15, 2023, 10:04pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.