Services behind Cloudflare have 95% timeouts

Hi everyone, I'm pretty unsure about what the root of the problem actually is and how I could go further into investigating it.. Since a few hours, all services that are hosted on a VPS, routed through an nginx reverse proxy which is directly behind Cloudflare seem to be unreachable. They are handing out 522's to most requests (but somehow, the requests are successful a few times without any real pattern). When connecting to the origin server, all requests go through successfully. I haven't made any changes to this setup prior to this day and have also rebooted the origin server and the related services. Is there anything I can really test/debug? To me, it seems like the connections fail for some mysterious reason only once they hit Cloudflare, and I haven't really found a good number of debugging options there.
9 Replies
David Wang
David Wang3mo ago
I would check your logs in nginx and with the proxied service to see what the request is hitting and what it isn't, and what's throwing the 522 does the nginx rp also handle issuing letsencrypt ssl certs for the domain?
ColdZer0
ColdZer03mo ago
Hey, I’m experiencing the same issue out of nowhere on a Plesk system hosted by IONOS. I was also informed that IONOS is having some network problems. Is your system, by any chance, hosted there as well?
Taubsie
TaubsieOP3mo ago
thanks, that tells me that I might not be going insane 😅 I'm with strato, but as far as I saw, they're doing quite some things similarly.. I really don't know why they would block cloudflare traffic tho :/
ColdZer0
ColdZer03mo ago
Yes, Strato is also part of United Internet / IONOS. I've talked to the support a few minutes ago and it seems that hey have some serious issues with routing SSL traffic (port 443) in their network. I've the same problem and temporarily disabled CloudFlare for the affected domains. It might be helpful if you also reach out directly to IONOS or Strato support. I heard from the hotline that they’re currently dealing with various issues, and problems reported related to Cloudflare are not a high priority at the moment because not many customers have reported Cloudflare issues so far. So it would probably be a good idea for you to report this problem as well.
Taubsie
TaubsieOP3mo ago
it does not, the rp only responds with the origin certificate that I registered with cloudflare.. that's also not really the issue, the certificate is being "attached" correctly I just checked if the requests go through when I disable the service behind the rp (aka just send no response), and weirdly enough, it seems like that request is being sent properly.. so I guess it only affects encrypted requests that leave my server? oof, that sounds weird.. but sure, I will contact them once I get the services up and running again :) thanks for letting me know!
ColdZer0
ColdZer03mo ago
I received a call and confirmation from IONOS that this is a global partial outage between United Internet and Cloudflare, and both parties are currently working on resolving it.
Taubsie
TaubsieOP3mo ago
alright great, thanks for letting me know! you totally saved me quite a bit of time <3
David Wang
David Wang3mo ago
I don't understand your second paragraph but anyways, seems you figured out what's going on
FatJuggernaut
FatJuggernaut3mo ago
I opened my browser today after work and the website is telling me I have been blocked from cloudfare. I dont know what I did to cause this I figured it out. I dont remember activating my vpn
Want results from more Discord servers?
Add your server