SSL handshake failed on full encription

SSL Handshake failed on full encription but not when i turn it to flexible. Can anyone help to solve this issue?

Likely your origin server does not work with SSL. Make sure port 443 is open, your server is configured correctly and has a valid and trusted SSL certificate from LetsEncrypt or another CA in place, or use a Cloudflare origin certificate.

You are best to pause Cloudflare, get your site working using HTTPS correctly(*), then enable Cloudflare again.

Use only “Full (strict)” on Cloudflare to ensure a secure connection.

(*) Note that using a Cloudflare origin certificate will give a warning if not used behind the proxy.

2 Likes

I have SSL certificate from one.com where also the domain is hosted. I did check with them and they confirmed all is seted corectly on they side. is on Cloudflare side wich somenthing is not configured corectly, but i dont realy undestand what. they give me to use a cname on dns but still is problems,

If your site isn’t working on Full and gives a Cloudflare error, but does work on Flexible, then your origin SSL isn’t working. Flexible uses HTTP only from Cloudflare even if clients use HTTPS (which is why “Flexible” isn’t secure).

Pause Cloudflare then post back with your domain name so it can be checked.

1 Like

is it posible to give me an advise what to ask them to do or to check to make sure the ssl is working corectly in combination with Cloudflare ? Many thanks in advance.

The SSL on your origin needs to work on its own first. Nothing special is required to make it work with Cloudflare.

As above, I suggest you give the domain name and pause Cloudflare (or set the DNS record to “DNS only”), then we can look and see what the problem might be.

1 Like

when i pause the Cloudflare is still same issue. does not change anything. is like Cloudflare is active

What is the domain?

the domain is masper.co.uk

You haven’t paused Cloudflare as your site is still using Cloudflare IP addresses…
https://cf.sjr.org.uk/tools/check?15a65bc74a9d48228b45efb471d8a883#dns

Your site loads, so you still set to Flexible? If so, switch back to “Full (Strict)”, then pause Cloudflare.

i just done it now.

The SSL problem is on your server. Making a direct connection fails…

curl -4 -Ivv https://masper.co.uk/
* processing: https://masper.co.uk/
*   Trying 77.xxx.xxx.xxx:443...
* Connected to masper.co.uk (77.xxx.xxx.xxx) port 443
* ALPN: offers h2,http/1.1
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
*  CAfile: /etc/pki/tls/certs/ca-bundle.crt
*  CApath: none
* TLSv1.3 (IN), TLS alert, handshake failure (552):
* OpenSSL/3.1.1: error:0A000410:SSL routines::sslv3 alert handshake failure
* Closing connection
curl: (35) OpenSSL/3.1.1: error:0A000410:SSL routines::sslv3 alert handshake failure

Make sure the IP address is correct and your SSL certificate is installed on the server.

1 Like

thank you very much, i just discuss now with them on the chat, and waiting the answear to this , many thanks for your help i will reply back later, after i get a proper answear

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.