I was able to generate my certs earlier and they appear to be working as expected from within my LAN (where my web server is also located), but when I turn SSL to full strict in cloudflare and try to access my site outside of my LAN, it throws a 526 invalid certificate error. when I change SSL from full strict to full, it works without any errors.
is there a config issue in my virtual host?
I’m using apache 2.4:
<VirtualHost *:80> Servername mysite.com DocumentRoot /path/to/site/public_html Redirect "/" "https://mysite.com/" </VirtualHost> <VirtualHost *:443> ServerAdmin root@localhost DocumentRoot /path/to/site/public_html ServerName mysite.com ServerAlias www.mysite.com <Directory /path/to/site/public_html> Options Indexes FollowSymLinks AllowOverride All Require all granted </Directory> #SSL SSLEngine on SSLCertificateFile /etc/letsencrypt/live/mysite.com/cert.pem SSLCertificateKeyFile /etc/letsencrypt/live/mysite.com/privkey.pem SSLCertificateChainFile /etc/letsencrypt/live/mysite.com/chain.pem # Security Features SSLProtocol All -SSLv2 -SSLv3 -TLSv1 SSLHonorCipherOrder On SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES </VirtualHost>
any help is appreciated!