SSL Handshake Error (Cloudflare Proxy)

I have trouble setting up Cloudflare proxy.
Situation:
A record: api2.fv.gbldev.ch -> 104.248.44.236 (No Proxy)
CNAME record: api.fv.gbldev.ch -> api2.fv.gbldev.ch (With Proxy)
SSL mode is “Full”

Output of cURL:

curl: (35) error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure

I tried a Let’s Encrypt certificate and also a Cloudflare origin certificate.
Also i tried a Let’s Encrypt certificate for “api.fv.gbldev.ch” and “api2.fv.gbldev.ch” with the same result.
Access by browser also doesn’t work.

How am i supposed to setup my ssl certificates to use the proxy function by Cloudflare?

The Cloudflare universal certificates cover example.com and *.example.com.
This means that it covers any subdomain one level above the domain you signed up with. It will cover www.example.com and subdomain.example.com, as these are one level above the root domain, example.com. The certificate will not cover www.subdomain.example.com or a.b.example.com, however, as these subdomains are too deep.

You can read more about this and the solutions in this community tutorial.

2 Likes

That is indeed the problem, thank you!

1 Like

This topic was automatically closed after 30 days. New replies are no longer allowed.