At the moment I’m developing a webspace system where I automatically create a web space for friends. I do this via apache2 (VHost) which navigates to a directory. Now I want all webspaces to have a Cloudflare certificate. I’ve created a * certificate (in Cloudflare) and create for every new webspace-subdomain a new A-record peer API to my server (via Cloudflare proxy -> orange cloud). In my Apache config, I have a vhost on port 80 which redirects peer proxy redirect to port 443 (SSL / https). The vhost on port 443 points to my directory forwards and also includes the certificate linking. But as soon as I go to the subdomain, the error “ERR_SSL_VERSION_OR_CIPHER_MISMATCH” comes up. What am I doing wrong or can someone tell me how to do it differently? Bzw, can that work at all?
It looks like you’re trying to proxy something like sub.web.example.eu, and your own domain is example.eu. Cloudflare SSL doesn’t cover sub-subdomains. You’d have to use a Dedicated Cert with Custom Hostnames ($10/month), and I believe it limits you to 50 custom hostnames.
Thank you very much!