Cloudflare DNS not directing to the updated IP Addresses
I updated my DNS records on Cloudflare this morning to point to a new IP address and it doesn't appear to be working.
The site is 100yss.org. The IP address is 170.187.146.46
Any advice?
6 Replies
For me that origin loads over HTTP but not HTTPS
Perhaps a firewall error?
If you don't have HTTPS configured on it, that's what you'd need to do. Enable HTTPS on port 443, and set it up with a certificate. If you don't have one, CF offers Origin Certificates which work with Proxy and last up to 15 years. Under SSL/TLS -> Origin Server (https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/).
You could also use a Cloudflare Tunnel instead which work well, whole other setup though.
So, I'm using Cloudflare's Full SSL Edge Certificate which is universal. Does that need to be installed on the server?
And huge thanks!
The Edge Certificate just for User -> Cloudflare (the Edge!). You'd need separate SSL for security from Edge -> Origin (which is where Origin Certs come into play)
Got it. Thanks!
You can technically pick SSL/TLS Mode Flexible where CF connects to your origin insecurely but it's horrible security practice, lying to visitors, and not actually end to end encrypted/secure at all. For actual security you need SSL/HTTPS on both ends.
Thank you! I'll work on this!