When I started with Cloudflare (a few days ago) I noticed that my AutoSSL in cPanel is not working.
Okay, my hosting support tells me that they will disable AutoSSL in cPanel and that I have to create SSL certificate on Clouflare and add it in cPanel.
And I did … Expiration date of this certificate (Origin servier) is in 2037.
But after instalation when I check in Mozzila validity of certificate I can see date from certificate which I can see in Cloudflare under Edge Certificates.
Why? Why is my page not secured with SSL which I added on my origin server and have validity till 2037?
My Overview settings are on Full (strict) and Always Use HTTPS (enabled).
Because your browser will get the proxy certificate and that usually has an expiration date within the next couple of months.
The certificate you configured on your server (and you chose well here, because you actually properly secured your site) will only be handled by the proxies. You can easily verify that by temporarily pausing Cloudflare, in which case you will connect directly to the server. Though be aware that you will get a certificate warning, as your browser won’t trust Origin certificates.
In short, if you are on Full Strict and your site loads fine, then you have a proper and secure setup.
Yes, at this momment my site looks okay …
So, I will leave everything as it is?
One more thing …
When I look at analytics about Traffic Served Over TLS I can see about 2% of “None (not secure)” - unencrypted ‘HTTPS’ requests. Is this normal and fine?
