Was the TLS 1.0 (1.1) not supported since 4am UTC 2017-10-30


#1

Few of our client-API connections stopped working since 2017-10-30 4am UTC.
After upgrade the client to use TLS 1.2, they back to work.

Was the TLS 1.0 been disabled at 2017-10-30 4:00 UTC?

(PS. Our “Require Mordern TLS” options was never on).


Did a further investigation, seems TLS 1.1 also not working.

Thanks,
-Steven


#2

For me also, many of my websites stopped working because my payment gateway uses TLS 1.0, and cloudlare disabled TLS 1.0 and 1.1 since yesterday with no alert…

Is there away of enabling it again ?


#3

I also suffered from this issue too. All traffic via CF using TLS 1.0 was closed.

EXCEPTION: System.Net.Http.HttpRequestException: An error occurred while sending the request. —> System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. —>

To force this on us without notification is unacceptable.

They state on the status page:

SSL for SaaS Issues
Resolved - This incident has been resolved.
Oct 27, 09:52 UTC
Investigating - Cloudflare is investigating issues related to certain SSL for SaaS custom hostnames not being accessible over HTTPS. We are actively working to resolve this issue.

Coincidence?


#4

Contacted them on Twitter, and got replay. They will roll out a fix later. For now, contact them if you need temporary solution (a free dedicated certification).


#5

I think CloudFlare rolled out the Require Modern TLS option under Crypto Tab to resolve this issue


#7

hi @prayag.verma
I think you should read the OP first.