Website Going Down Once We transfer the account

What is the name of the domain?

ittihad.dev

What is the error number?

Error 1000

What is the error message?

Ray ID: 8e24ec557aec2cee • 2024-11-14 06:25:15 UTC DNS points to prohibited IP

What is the issue you’re encountering

i am changing name server for the ittihad.dev account and adding it in new account with new name server and the dns record is exporing from old cloudflare account to new one but one time this issues appearing. another time ssl issue appearing, i have applied both flexible and full but its not working

What steps have you taken to resolve the issue?

Worked on applying recommended action from cloudflare like applying ssl and forcing secure ssl

What feature, service or problem is this related to?

Nameservers

Screenshot of the error

Error 1000 means the DNS record points to a Cloudflare IP address. If you are getting Cloudflare to detect the DNS records from another Cloudflare account it will cause this problem as it will find Cloudflare IP addresses for proxied records rather than the origin IP address.

You will need to edit the DNS records to set your IP addresses manually.

If unsure, you can show a screenshot of your DNS records.


this is the current dns records fetched from old account. if you need i can share the exported dns file

Delete the top 2 A records, and the 2 AAAA records.

Deleted

And Now the issue is

The page isn’t redirecting properly

An error occurred during a connection to ittihad.dev.

This problem can sometimes be caused by disabling or refusing to accept cookies.

Check your SSL/TLS setting is set to “Full (strict)” in your dashboard here…
https://dash.cloudflare.com/?to=/:account/:zone/ssl-tls

it is set to flexible

Use only “Full (strict)”.

when i set to full strict

Sorry, missed your DNS record is not proxied. Requests are going direct to your origin so you need to install a valid SSL certificate on your origin server.
https://cf.sjr.org.uk/tools/check?d7da31c06bac4554aa0ae2daa0dc3c0b#dns

.dev is in the HSTS preload list so you must support HTTPS on your origin.

i will proxy these records? server is configured properly, plz guide me here to make necessary changes in cloudflare.

here are the updated records,

should i make all of them proxied.

You should always have SSL configured on your origin even if using the proxy. Fronting a non-SSL origin with Cloudflare SSL is insecure as traffic between Cloudflare and your origin would be unencrypted.

Keep the proxy off for now, sort out your origin SSL and once working you can re-enable the proxy.

in the server there is no certificates, and it was working fine with no certificate. what i have done is just changed the account and updated the name servers.

You were probably using “Flexible” SSL before. That is not secure for the reasons I stated above.

even thought if i put flexible now, with the same dns records, its not working. any solution like to have advanced certificate manager?

The record isn’t proxied and there’s no SSL on your origin. Without that it isn’t going to work.

okay, should i generate the csr and key from cloudflare account right


and next apply the certificate in my ec2 instance?

https://www.youtube.com/watch?v=yM4oihRx46s

is above video is right way to do that?

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.