This site can’t provide a secure connection? how to fix?

I get this error below when going to https://
This site can’t provide a secure connection nightmaaron.com sent an invalid response.
Try running Windows Network Diagnostics.
ERR_SSL_PROTOCOL_ERROR

I’m using Cloudflare FLEXI

In that case you already have a security issue and should fix your server first.

it’s wordpress on hostinger my other site is perfectly fine and they are exactly the same currently

I am afraid that is not accurate, your server is not configured for SSL, so as already mentioned you need to fix that.

Talk to your host to get your server configured for SSL.

I have two websites both are set up exactly the same one works and the other does not I’m trying to figure out what is wrong, please stop sending me else where when they are on the same server with the same settings EXACTLY the same and yet only one is not working this isn’t my side

Then these sites are insecure as well.

For the third time, you need to talk to your host and get your server fixed. It obviously does not load on HTTPS.

$ curl -I https://nightmaaron.com --connect-to ::[IP_ADDRESS]
curl: (35) error:14094438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error

All Cloudflare can provide here is an Origin certificate, which you can get at https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/

Hi @noob1

To answer your question, I believe the issue is that you don’t have the :orange: Proxy turned on for your domain apex record.

Open the Cloudflare dashboard and choose the DNS page from the navigation menu.
From the DNS page, look for the A record named nightmaaron.com and switch the :grey: DNS-only to :orange: Proxy on.

If your comfortable sharing the DNS details then take a screenshot and post here.

1 Like

That won’t fix the server issue.

I know, but one step at a time. He’ll just get pissed off if you blame FLEXI SSL thing before helping him fix his actual problem. He’s currently got the :orange: proxy off and exposing the origin IP.

The first step is to fix the server. Only then, Cloudflare should be considered and the OP should not be misled into the wrong direction.

Ok i have (i believe) sorted the main issue but now i have a new one :slight_smile: I’m now getting your connection is not private and in the cert’s it’s saying
This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.

You fixed the issue and you do have the right certificate on your server now.

Just make sure you are on Full Strict. As for the warning that you are getting, that’s just because of DNS propagation, wait a bit until your resolver updated the record and you will connect to the proxies.

1 Like

ok thank you have a great day everyone

My pleasure.

Just make sure you fix the other sites as well, otherwise they are still insecure.

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.