I’m using Cloudflare through DreamHost as an integrated partner for domain ecosourcellc.net. Status is currently marked as “active”. Under Crypto, there is no marker for Universal SSL Status, but that is not abnormal for DreamHost sites (other active and functional sites also do not have a marker to indicate Universal SSL Status under Crypto).
Domain is held with Network Solutions, though is pointing to DreamHost nameservers. There is no SSL certificate active with Network Solutions for the domain.
SSL certificate has been removed from the host (It was previously a Let’s Encrypt certificate which had the same issue as this one). Site is accessible via http, but yields “ERR_SSL_VERSION_OR_CIPHER_MISMATCH” when accessed via https. I have tried in the SSL/TLS settings OFF, Flexible, Full, and Full (Strict), with none fixing this issue. DreamHost support has confirmed the HTTPS version of the site is accessible on their end, and said I needed to contact Cloudflare support.
Aha! Disabling and re-enabling the Universal SSL seems to have cleared it up. Mixed content is to be expected for the moment since I had to disable the SSL initially to try to get this to work. What a silly fix.
I have the some problem as elaluationunit and I’m hosted on dreamhost too. I try to disable and re-anable the Universal SSL but the problem persists.
Checked also for mixed content on whynopadlock and I haven’t any.
My solution is to have paused the site on Cloudflare.
Do you have any other advise to try?
PS disabling and re-enabling the Universal SSL works for a very short time and not on all the platforms I tested, this in my case
@evaluationunit I would like to not do this because I don’t know how many time CF needs to release a new one and I need to have up and running the site. Really it is an error that can’t be explain without a try-error procedure?
When I did it, CF was up in barely a manner of an hour or so. Perhaps do it at a time when you have less traffic? Although if you’re experiencing the cipher mismatch issue chances are people aren’t able to visit your site right now anyway.
1 Resume Cloudflare
2 Visit the site (you will see the error you were seeing)
3 On the SSL/TLS app, disable Universal SSL & wait 5 minutes
4 Enable Universal SSL, clear your browser cache, visit the site, let us know if you still see the error. Once the cert is issued, on the SSL/TLS app, you’ll see Active Certificate as opposed to Authorizing. It may take as long as 24 hours after you enable universal ssl for the certificate to be issued.
I leave this here in case somebody has the some problem. The certificate was released in less then 1 hr but the site was up an running without problem after I point 3 was completed.
@sandro I have no idea why two days before was not working! I know those are the right steps, I applied them following the instructions and this was the reason why I search here and then opened a ticket. I wasn’t able to understand why it didn’t work even if I followed by the book the procedure.
How did I have no answer to give you now, but now it works and I’m grateful to CF support team and to CF community for the support and the advise they gave.