Hello, there is a problem with the SSL for the main domain mirror - www.i-aria.fun. For some reason, the main domain’s SSL does not extend to the mirror. Can’t figure out how to fix it
Hello there,
I do not see the problem.
Would you explain more about it?
When I turn on the Full (strict) mirror in the SSL settings, www.i-aria.fun stops working, but this was not a problem before, it appeared a few days ago. i-aria.fun is displayed in all modes without problems, but the mirror www.i-aria.fun does not want to be displayed in Full (strict)
Seems there’s an issue with the certificate if that’s the case. Would you check your origin certificate. Here’s a more information:
After installing the certificate according to your instructions, the check shows on - 301 Moved Permanently. Is this normal? Is it supposed to be? Sorry if this is a silly question, but I’ve just started diving into Cloudflare settings
This means there’s a redirect. Is that happening so? You may check the redirect rules if you’ve set one.
Yes, I know it’s a redirect. There used to be a 522 error, after installing the certificate on the server, redirect. I just don’t know if I did everything right. If it’s not an error, then the problem is solved.
Should the generated certificate be displayed in the Edge Certificates panel? Because it is not there yet
It should show the universal one. If you’ve created origin certificate, that would show under origin server.
It sounds like you are experiencing issues with the SSL configuration for your main domain and its mirror, www.i-aria.fun. When you enable the Full (strict) SSL mode in Cloudflare, the mirror domain stops working, which suggests that there may be an issue with the SSL configuration for the mirror domain.
To troubleshoot this issue, I would recommend the following steps:
- Check the SSL configuration for the mirror domain to make sure that it is set up correctly. In particular, you should verify that the SSL certificate is properly installed and configured on the server, and that the DNS settings for the mirror domain are pointing to the correct server.
- Check the server logs for any errors or messages related to SSL connections for the mirror domain. This can help you to identify any specific issues with the SSL configuration for the mirror domain that might be causing the errors.
- Test the SSL configuration for the mirror domain using a tool like SSL Labs or OpenSSL. This can help you to identify any issues with the SSL configuration for the mirror domain that might not be obvious from the server logs.
- Contact your hosting provider or server administrator for assistance. If you are unable to resolve the issue on your own, your hosting provider or server administrator may be able to help you diagnose and fix the problem.
In response to your question about the generated SSL certificate, it is normal for a 301 Moved Permanently response to be returned when the certificate is installed correctly. This response indicates that the server is properly redirecting all traffic to HTTPS, which is the expected behavior when using the Full (strict) SSL mode in Cloudflare.
As for the generated SSL certificate, it should be displayed in the Edge Certificates panel in Cloudflare once it has been successfully generated and installed on the server. If the certificate is not showing up in the panel, it is possible that there was an issue with the certificate generation process, or that the certificate was not properly installed on the server. In this case, you can try generating and installing the certificate again to see if that resolves the issue.
I hope these steps help you to resolve the SSL issues with your main domain and its mirror.If you are still experiencing issues with the SSL configuration for your main domain and its mirror, you can try the following additional steps:
Try disabling the Full (strict) SSL mode in Cloudflare and using the Flexible SSL mode instead. This can help you to verify whether the issue is specific to the Full (strict) mode, or if it is a more general issue with the SSL configuration for the mirror domain.
Check the SSL settings for the main domain and its mirror in your hosting control panel or server configuration to make sure that they are consistent with the settings in Cloudflare. Sometimes, there can be discrepancies between the SSL settings in Cloudflare and the server, which can cause issues with the SSL configuration.
Check the DNS settings for the main domain and its mirror to make sure that they are pointing to the correct server and that the DNS records are set up correctly. Incorrect DNS settings can cause issues with the SSL configuration and prevent the server from being able to establish a secure connection with the client.
Try clearing the cache and cookies on your browser and accessing the mirror domain again. Sometimes, temporary files and cookies can cause issues with SSL connections, and clearing the cache and cookies can help to resolve these issues.
@io11, I am afraid but I would strongly discourage you from doing that as Flexible is an insecure, legacy setting, which will only break your site.
In these cases it’s always best to pause Cloudflare
and make sure the site loads fine on HTTPS first.
With your site it actually does, there is admittedly a warning, but that’s only because of the Origin certificate you chose, which only works for Cloudflare but not for browsers, but that’s fine.
As far as I can tell your setup is correct and you have the right certificate in place. Make sure that you are on Full Strict (and nothing else) and your site should be all right.
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.