I was always using CPANEL and there it was quite easy to install CSR file.
However now im using something else, and have to pay to install CSR file I got from Cloudflare to use Authetincated Origin Pulls.
Does anyone know if theres a workaround? I am running wordpress and been looking for a way to do this from WP level but nothing found.
PS. They wont allow me to install any kind of cert files. The only choice is to buy SSL from them or to buy service from them that would include installing internal or external SSL certificates hmm.
Unless you’re doing anything super-secret that warrants you being wary of getting MITMed, try just using SSL=Flexible. You may even find SSL=Full works if the host has any kind of cert on their host (even if it doesn’t match your domain name).
I think the OP wants to prevent people from bypassing Cloudflare. A while back, I added this to .htaccess:
RewriteEngine On
RewriteCond %{HTTP:CF-IPCountry} ^$
RewriteRule ^ - [F,L]
It checked the headers for the IPCountry header, and if it wasn’t there, it knew the request didn’t come from Cloudflare, so would block it. It’s been a while, so I don’t know how well it would work now.
I currently have a firewall set up on my server that only permits Cloudflare IP addresses access to ports 80 and 443.