The site has been fine with Cloudflare for over a year. There used to be a certificate on the server itself, but I opted for using Cloudflare with a Universal certificate and SSL set to Flexible over a year ago. Today, on the anniversary of the orignial, no longer used and supposedly deleted host certificate, we started getting errors and I’ve been unable to get the host to understand that it should be working. I created a simple html test file ( https://www.nealmoserguitars.com/test.htm ). If I turn off SSL I get a too many redirects error. If I turn on SSL I get a ERR_SSL_VERSION_OR_CIPHER_MISMATCH error. I have tried recycling the universal certificate as well to no avail. The host is telling me I need a certificate on the site. I have 20+ sites using cloudflare and NONE of them did I do anything more than Set SSL to Flexible, and set the setting to resolve all traffic to HTTPS.
I think the server still thinks it has an SSL certificate. But I can’t get the host to understand and need smarter words if that is the case.
Not sure what you mean. Maybe you misunderstood. I have setup cloudflare for at least 20 of my clients. I’ve never had to put a certificate on our servers. This one site stopped working and I need to resolve it.
I found that they hadn’t actually removed the original expired certificate and csr from the site, so I did that. Now I’m getting a 522 timeout error from cloudflare just going to a simple test file.
99.99% chance I know exactly why that is happening. But the fix is to switch to Full Strict and install valid certificates on your origin for every domain and customer. Anything else is gross negligence if you are being paid to manage domains so the root cause isn’t important, proper configuration will solve the error.
While we can disagree on what I need to do and get paid for… I turned off the SSL on Cloudflare and still can’t get the simple html test page to come up. At this point Cloudflare should just be acting as the DNS and just bring up a simple page, but instead it’s not going thru.
Thanks everyone for the insights. It turned out that when I removed the old (and supposedly no longer used) SSL certificate from the host, as it is a cloudserver, the IP address changed. All I had to do was update the A record on Cloudflare and we’re back in business.