How to config cname ssl


I want to set the CNAME settings as follows. but I want the SSL certificate installed on the side of the service provider to work. I have a error ERR_SSL_VERSION_OR_CIPHER_MISMATCH

cname -> (my certificate is installed here)

Thank you


I asked support once on the same issue. The origin must have the SSL certificate for the same domain you are requesting. So basically: must have an SSL certificate for, if you have the wrong certificate and if you have Cloudflare enabled set a Page Rule for SSL Full (not strict) on that domain or put a Cloudflare Origin Certificate, otherwise you have to install a certificate for the correct domain.


I ended up having to set SSL to Flexible to be able to do this. Once in a while, I get lucky and the origin provider can add my subdomain to a Let’s Encrypt certificate.


If the origin has a certificate, even a wrong one, it works with SSL set to Full, having it at Flexible uses HTTP for the Cloudflare <-> Origin requests.

closed #5

This topic was automatically closed after 14 days. New replies are no longer allowed.