Unable to access site through Cloud Flare proxy

I am using Cloudflare’s HTTP/HTTPS proxy for one of my sites. The DNS is configured in Cloudflare with the proxy enabled.

However, the site fails to load over HTTPS, with the handshake to CF’s proxy failing entirely.

$ curl -I https://my.site.here.net
curl: (35) error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure

The HTTP endpoint correctly returns a 301 to the HTTPS page

$ curl -I http://my.site.here.net
HTTP/1.1 301 Moved Permanently
Date: Sun, 28 Aug 2022 21:19:56 GMT
Content-Type: text/html
Connection: keep-alive
Location: https://my.site.here.net:443/
CF-Cache-Status: DYNAMIC

I am able to connect to the site successfully when skipping the Cloudflare proxy.

$ curl -I https://my.site.here.net --resolve 'my.site.here.net:443:123.123.123.123'
HTTP/1.1 200 OK

I have redacted the actual FQDN and IP address for obvious reasons. What is going on here?

If that is the format of your hostname, then it’s this:

2 Likes

I wasn’t aware of that limitation. Thanks!

1 Like

If you want to protect that hostname, you could consider purchasing Advanced Certificate Manager. Note: you must include the zone name (ie. here.net) in every certificate (don’t know why).

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.