Nginx + letsencrypt + cloudflare


#1

Can’t get it work whatever i try to do…
Im using certbot and nginx. Full and Full (strict) mode

Im getting this error after i enable cloudflare. ERR_SSL_VERSION_OR_CIPHER_MISMATCH

nginx config

https://pastebin.com/YM0e4UcP


#2

Hi,

Can you go to cloudflare, on ssl page and confirm that universal ssl is enabled? (Since if that’s disabled it will post this error)

Thank you

P.S. for 301 redirects, you can use if protocol is http, rewrite to https. (I’ll update this with exact one I used later)


#3

@stevenzhu


#4

What are the actual domain and, if applicable, subdomain?

Does Cloudflare have an active Universal SSL certificate?


#5

@mnordhoff
pilt dot io is domain
Yes, active


#6

https://pilt.io/ currently works. It’s not using Cloudflare’s CDN.

https://www.pilt.io/ is also not using Cloudflare’s CDN. It doesn’t work because the certificate doesn’t include the name www.pilt.io. But that results in a different error code than ERR_SSL_VERSION_OR_CIPHER_MISMATCH.


#7

@mnordhoff
If i turn cdn on (orange cloud) then it appears. I can do it…

EDIT: On now.

Firefox: Error code: SSL_ERROR_NO_CYPHER_OVERLAP
Chrome: ERR_SSL_VERSION_OR_CIPHER_MISMATCH.


#8

Touche. You’re right.

This is a Cloudflare issue. As far as I can tell, you’re doing everything right.

Switch it back to gray cloud for now, I guess.

Maybe you just have to wait longer for Cloudflare’s HTTPS to work.

You may want to post on their forum or contact their support.


#9

Yeah, i was thinking same.

thank you @mnordhoff


#10

Fixed. No idea how i did it.


#11

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.