I am trying to obtain a managed certificate as explained here:
The problems appear right away, because one of the requirements is as follows:
The DNS records for your domain must reference the IP address of your load balancer’s target proxy
On Cloudflare, I set an A record to 35.XXX.YYY.ZZZ for my subdomain example.domain.com. However, when I query the subdomain I get a different set of IP addresses, because Cloudflare hides the original one:
This causes the certificate provisioning to fail, because it does not see the correct IP address. This persists even if I disabling the proxying through the orange cloud icon.
How can this be solved?