Websocket reverse proxy on cloudflare

Does anyone know how to deal with it?

I set up the website iofod.com on cloudflare and my SSL/TLS encryption mode is Flexible.

However, I can’t request the websocket services through ws://socket.iofod.com, but must be through
wss://socket.iofod.com, yes I can implement reverse proxy through nginx forwarding, but I want to do it through the configuration on cloudflare, what should I do ?

That’s insecure to begin with and you should set this to Full Strict.

3 Likes

Thanks, you are correct. Full Strict eliminates potential security risks. I’ve used render’s hosting service before and found that they can do what I described, they also use cloudflare, I guess they probably do websocket reverse proxy by some magic configuration of cloudflare.

In that case I’d suggest you secure the encryption mode at this point.

As for the WebSocket question, socket.iofod.com does not exist but apart from that you might also want to check out HTTPS redirects and HSTS. Especially if the latter is enabled, you probably won’t be able to use ws:.

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.