Unproxied A records + Cloudflare Origin SSL + Redirects? PART 2

Continuing the discussion from Unproxied A records + Cloudflare Origin SSL + Redirects?:

@epic.network, while I was researching your last answer the topic has closed. I’m continuing it here to finalize everything. I read your post from Let’s Encrypt about excluding the ACME path for validation to work. So you’re turning off cache and SSL options for this path:

Cache Rule “ACME Challenge”:

(starts_with(http.request.uri.path, "/.well-known/acme-challenge/"))
Cache status: Bypass cache

Configuration Rule “ACME Challenge”:

(starts_with(http.request.uri.path, "/.well-known/acme-challenge/"))
Automatic HTTPS Rewrites: Off
Browser Integrity Check: Off
Opportunistic Encryption: Off
Security Level Essentially: Off
SSL: Off

I don’t see an option for also turning off the Always Use HTTPS option for the ACME path in the Configuration rules, which means it needs to be disabled globally. You said that you handle HTTPS redirects at the origin, but I still wish to configure them at Cloudflare. So I need to configure a redirect rule to force HTTPS but with the ACME path excluded. I will post my results when I’m done.

1 Like

7 posts were merged into an existing topic: Unproxied A records + Cloudflare Origin SSL + Redirects?

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.