I have an Issue that some mobile visitors to iran-pedia.org can not reach the site and they are faced with a SSL cert warning. The thing that makes the issue more complicated is that I am using Project Shield as Ddos mitigation measure on top of my web sever.
My vhost configuration on the server seems ok as below:
the general ssl error on web browsers and they also claim they’re not able to login to the website with VPN. I guess it has something to do with the SSL since I have to configure the SSL in two different servers, on web server and the Project Shield SSL certificate setup.
Certainly this is an issue with mobile users.
Yes, it’s reasonably likely that the users are being faced with deliberate interference from their network operators.
One possibility would be to ask them to save the certificates in their browsers. If you want to practice what the user interface looks like in different browsers, you can visit
They have some deliberately misconfigured and invalid certificates, which can simulate the behavior that a user would encounter either when visiting a misconfigured site or when under attack by a network that tries to stop or intercept access to a particular site. You can then see what steps to take in your browser in order to download the certificate.
If the users experiencing the problem follow similar steps, they could share the exact certificate data with you or with another forum, which would then make it straightforward to confirm that the problem is being caused intentionally by a network operator.
Only some mobile users are faced with this issue. The main reason that makes me think that it is a SSL misconfiguration on my side are:
Even when these users activate VPNs or proxy, they are unable to reach the website although they can reach other filtered websites with their VPNs inside Iran.
Second reason to believe this is a SSL misconfiguration is on top of the server I have Project Shield installed to protect the website from DDOS attacks maybe the SSL configurations on Project Shield are not set properly.
Can you please name me some other Letsenrypt crafted website to check.