Tunnel Encryption

When using a tunnel, I see that the connection from my server to Cloudflare edge would be encrypted, and from the outer edge to the client.
Would my traffic within Cloudflare’s network stay encrypted?



Thank you for asking.


Kindly, make sure to use valid SSL certificate at your origin host/server for your domain name and use Full (Strict) SSL option at Cloudflare dashboard, if so.

Thanks for the reply.

I assume a Lets Encrypt cert would do the trick?

In short - yes.

Either, if you aren’t going to use this origin host/server to send out e-mails and only for web traffic (either if you are using tunnel I assume you are going to lock your ports), I would recommend to use Cloudflare Origin CA certificate in that case to worry less about the renewing process every few months :wink:

If interested, kindly make sure you follow the instructions as follows on the below article to setup an SSL certificate using Cloudflare Origin CA Certificate:

Last but not least, kindly have a look here for more information regarding SSL settings at the SSL/TLS tab on Cloudflare dashboard: