I’ve got a website running on Cloudflare for a while, and noticed that a bunch of requests have been non-SSL even with the following enacted on Cloudflare:
- Total TLS
- Enforce HTTPS
- HTTPS Rewrite on
- SSL through Cloudflare
Have you searched for an answer?
I’ve searched for the answers, and found common setup, which I have on my site but SSL still keeps getting bypassed for a couple requests each day. I want to completely 100% prevent any non-SSL traffic.
What could be the issue, if it’s not the basic Cloudflare settings? Are people forcing non-SSL by way of headers? I’ve got anything except “GET” blocked.