Http TLS handshake error

I have been utilizing the Cloudflare CDN to route my VPN server traffic through TLS encryption and SNI (Server Name Indication). However, despite this setup, I have encountered TLS handshake errors in my logs. A few examples of these errors recorded in the logs are as follows:

  1. DEBUG - XRAY: 2024/04/01 16:05:07 http: TLS handshake error from [2400:cb00:470:1024::ac46:f378]:37756: EOF
  2. DEBUG - XRAY: 2024/04/01 15:51:43 http: TLS handshake error from [2400:cb00:392:1024::ac46:9484]:58757: EOF
  3. DEBUG - XRAY: 2024/04/01 15:51:43 http: TLS handshake error from [2400:cb00:380:1024::ac46:6b8c]:18525: EOF

what could be the cause of this and how can I solve it?

Hi @mortezarahmati1383

I can see you have three domains in your account, so I’m not sure which domain you have issues with, but one domain, do not have any DNS records and another domain has 1 DNS record that are unproxied.

But try following troubleshooting guidance:

TLS handshake errors can occur due to various reasons such as client-side issues, incorrect SSL/TLS configurations, or network interruptions. To resolve these errors, follow these steps:

  1. Check your SSL/TLS configuration on your server to ensure it’s set up correctly.
  2. Verify that your server’s firewall or security settings are not blocking or interrupting the handshake process.
  3. Ensure your SSL certificate is valid, not expired, and properly installed.
  4. If you’re using SNI, confirm that your server is configured to handle SNI requests correctly.
  5. Review Cloudflare’s SSL/TLS settings in your dashboard to ensure they match your server’s configuration.