SSL/TLS encryption

diego.santos1 · December 11, 2024, 1:09pm

What is the name of the domain?

encryption using TLSv1.2 and TLSv1.3.

What is the issue you’re encountering

version TLS 1.2 and TLS 1.3

What steps have you taken to resolve the issue?

I would like to understand the origin of the requests related to SSL/TLS encryption using TLSv1.2 and TLSv1.3.

From the Cloudflare interface, I am unable to identify the origin of usage for each case.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Flexible

mcorreia · December 13, 2024, 3:18pm

Hi there,

Your SSL/TLS setting is not set to flexible, it’s set to full strict, which means Cloudflare will use end-to-end encryption from Cloudflare to the origin.
Having said this, if you’re referring to TLS1.3 to origin, Cloudflare will leave the selection up to the origin itself. If you’re referring to the TLS version from Cloudflare edge to the client, you can set it under “SSL/TLS” > “Edge Certificates” under “Minimum TLS Version”.
Do note that the TLS version from the client to the edge does not necessarily have to be the same as the one used from Cloudflare to the origin since the traffic is re-encripted according to your settings.

Take care.

system · December 28, 2024, 3:18pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Deprecated - SSL/TLS app Settings Tutorial Tutorials	0	20411	January 2, 2019
SSL/TLS encryption mode is Full (strict) but still using Cloudflare SSL? Security	3	1008	March 19, 2023
SSL On Original Host Vs Cloudflare (Settings?) Problems Security	2	1817	September 27, 2021
Minimum TLS version setting not reflected Security	4	19	November 24, 2024
Setting up a SSL/TLS encryption mode for each subdomain Security	3	5640	May 15, 2020