My domain suddenly appeared as set to another SSL certificate of domain and redirecting to another site

ssl

#1

Hello,

When we browsing the domain www.mentealternativa.com, my hosting company noticed it is using the SSL certificate of my other domain www.avatair.com and showing an SSL warning. The first domain is also redirecting to that other domain when we skip the warning. Both of the above domains are using cloudflare DNS service and SSL. It seems that the issue is related with the cloudflare configuration, according to my host provider.

We are also receiving 503 error while browsing the domain. They think It may be related with cloudflare connection limit.

Can you please help me sorting this? I have not made any modifications in my Cloudflare admin panel and I don’t understand how this suddenly happened.


#2

I think I am going to refer it to the team @ryan, @cloonan or @cscharff. You can also contact support.

If I access it via the browser I see a redirect to https and then one to the other domain (are you sure there are no redirects on the server or in the page rules?).

If I curl it then it gives me a 503.

curl -I http://www.mentealternativa.com/
HTTP/1.1 503 Service Temporarily Unavailable
Date: Fri, 14 Sep 2018 20:39:18 GMT
Content-Type: text/html; charset=UTF-8
Connection: close
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cfduid=dca6c9c26530ba4c1e9e2921397e0b8b71536957558; expires=Sat, 14-Sep-19 20:39:18 GMT; path=/; domain=.mentealternativa.com; HttpOnly; Secure
Cache-Control: no-cache
Server: cloudflare
CF-RAY: 45a5a98771193d77-MXP

curl -I https://www.mentealternativa.com/
HTTP/2 503 
date: Fri, 14 Sep 2018 20:39:20 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
set-cookie: __cfduid=db9726a9c25b196d80be36cd167954d0b1536957560; expires=Sat, 14-Sep-19 20:39:20 GMT; path=/; domain=.mentealternativa.com; HttpOnly; Secure
cache-control: no-cache
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 45a5a9909f983d77-MXP

Any idea @sdayman, @sandro, @MarkMeyer…?


#3

Opening the site in browser briefly shows Cloudflare’s Javascript challenge. Even though I’d be surprised if Cloudflare sent it with a 503, this seems to be the case here.


#4

Yeah, I don’t know how it works when you can’t do the Javascript challenge. Could be the 503. They have it set to “I’m Under Attack” probably, but still shouldn’t redirect if there is none configured.


#5

Same here.

I only get the 503 when I use curl. A web browser shows the page.

@joseluispreciado
is the 503 Cloudflare branded?


#6

It actually seems as if the challenge is served with a 503 and then - upon successful completion - continues normally.


#7

Agreed. We need them to remove that setting to continue testing.


#8

Yep, it is.


#9

It very much appears to be :slight_smile:

Though I am not sure why they serve it as 503. Caching maybe.


#10

On the DNS tabs, both domains point to the same IP address


#11

Is there a reason for the 503 on that page, though? I assume there is, but no idea :sweat_smile:


#12

Good question @matteo , I did not see the 503 but did not go hunting to reproduce it yet.

In the thread @sandro mentioned it was a cloudflare branded page, was that the one with the color images or the black & white one with the name cloudflare?


#13

I believe it’s the interstitial page (the one that appears while in the “I’m Under Attack” mode, with the bouncing dots) is served with a 503.


#14

Ehm, good question :slight_smile: my memory isnt the same anymore what it was in my younger days :wink:

Seriously though, cant remember exactly the layout, but I believe it was the usual page of the Javascript challenge. Is that served via 503? For now the issue seems fixed though, I guess the OP doesnt claim to be “under attack” any longer.


#15

I’ve forgotten about those days


#16

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.