Something Wrong with DNS - Site Propagated and then it didn't

ERR_TUNNEL_CONNECTION_FAILED

Not fully propagating. Last night it started to propagate. The site was up briefly on browsers yesterday. It looks less propagated now than it did last night. We are now not able to get to the site.

whatsmydns shows a lot of red Xs.
‘Cloudflare System Status - All Systems Operational’ - but the site is not operational.

If anyone is available to help get our site online, we’re happy to provide free blockchain training. We really appreciate it.

Domain?

theblockchainacademy com

You have a DNSSEC issue.

https://dnsviz.net/d/theblockchainacademy.com/dnssec/

Make sure the values at your registrar match thoses provided by Cloudflare.

1 Like

Thank you. I’ll look into now.

New error…

This site can’t provide a secure connection

theblockchainacademy com uses an unsupported protocol.

ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Was the site secure before Cloudflare?

The site was using Cloudflare via another developer, on his Cloudflare account. SSL was established.

We have transitioned to our own Cloudflare and updated DNS so our new site can launch, but we’re stuck.

Currently " Your SSL/TLS encryption mode is Full"

That’s an insecure mode, switch that to Full Strict first.

Thank you Sandro. Done, upgraded to Full Strict.

I don’t know how long it takes, to take effect, but the same error remains.

ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Unsupported protocol
The client and server don’t support a common SSL protocol version or cipher suite.

Great, now try to toggle Universal SSL.

I’m in Edge Certificates and it shows - Universal - Pending Validation(TXT)

It says no action is required.

Should I — ### Disable Universal SSL — ??

Disabling Universal SSL removes any currently active Universal SSL certificates for your zone from the edge and prevents any future Universal SSL certificates from being ordered. If there are no dedicated certificates or custom certificates uploaded for the domain, visitors will be unable to access the domain over HTTPS.

Yes, disable it, wait ten minutes, and enable it again.

OK. Done. Waiting 10 minutes. I’ll let you know. I can’t thank you enough!!

The certificate got issued, but you have an SSL issue on your server.

You will need to talk to your host at this point, to get the server properly configured.

Pause Cloudflare (bottom right), get the server fixed, and once it loads fine on HTTPS, you can unpause Cloudflare.

1 Like

Error 526
Ray ID: 731f837a5e2b8600 • 2022-07-28 18:00:18 UTC
Invalid SSL certificate

theblockchainacademy com

You - Browser - Working
Mumbai - Cloudflare - Working
theblockchainacademy com - Host - Error

Do I need to do something more/different with Google Domains or Cloudways?

I just addressed this issue :wink:

Great. Thank you. I’ll report back.

We are up, thanks to you, Sandro!

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.