Name: foro.losumo.com
Addresses: 2606:4700:30::681c:aba
2606:4700:30::681c:bba
104.28.10.186
104.28.11.186
Name: www.foro.losumo.com
Addresses: 2606:4700:30::681c:bba
2606:4700:30::681c:aba
104.28.10.186
104.28.11.186
Name: foro.losumo.com
Addresses: 2606:4700:30::681c:aba
2606:4700:30::681c:bba
104.28.10.186
104.28.11.186
Name: www.foro.losumo.com
Addresses: 2606:4700:30::681c:bba
2606:4700:30::681c:aba
104.28.10.186
104.28.11.186
Hi @fernandoch
the site use Cloudflare:
Host | T | IP-Address | is auth. | ∑ Queries | ∑ Timeout |
---|---|---|---|---|---|
foro.losumo.com | A | 104.28.10.186 | yes | 1 | 0 |
A | 104.28.11.186 | yes | 1 | 0 | |
AAAA | 2606:4700:30::681c:aba | yes | |||
AAAA | 2606:4700:30::681c:bba | yes | |||
www.foro.losumo.com | A | 104.28.10.186 | yes | 1 | 0 |
A | 104.28.11.186 | yes | 1 | 0 | |
AAAA | 2606:4700:30::681c:aba | yes | |||
AAAA | 2606:4700:30::681c:bba | yes |
But the Cloudflare certificate is a wildcard without the www-version:
CN=sni.cloudflaressl.com, O="CloudFlare, Inc.",
L=San Francisco, S=CA, C=US
13.03.2019
13.03.2020
expires in 362 days sni.cloudflaressl.com,
losumo.com, *.losumo.com - 3 entries
www doesn't work:
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.
These may be your internal ip addresses.
But your public ip addresses are 104.28.10.186 etc.
If you want to use Cloudflare, you must have a complete certificate before you activate Cloudflare.
So first deactivate Cloudflare, so the 37.... is your public ip address. Then create a correct certificate, then activate Cloudflare.
Or use the Cloudflare - integrated solution.
A few hours earlier I have updated the page
and added a link to the Cloudflare blog @schoen had shared.
I had the complete certificate before activating cloudflare.
Maybe. But we can't check it. We see only Cloudflare.
Oh, wait. I can check it. But I need your complete ip.
Or check it direct using my tool - https://check-your-website.server-daten.de/
Yesterday I have added a new field - Hostname.
So it's possible to add the ip address in the main field and the hostname in the extra field.
Then you can check it without having a dns A- or AAAA entry.
So you need two checks: Both with the same ip address and one time the non-www, the other time the www domain name in the hostname field.
Just removed the certificate and created it again but now with cloudflare…
A bit lost in here, what to do? Should I remove cloudflare and stay without it?
Recheck the domain to see if it works - https://check-your-website.server-daten.de/?q=foro.losumo.com
You need to either disable Cloudflare’s proxy on https://www.foro.losumo.com/ or buy a Dedicated Certificate with Custom Hostname that matches that hostname from Cloudflare.
I will disable cloudflare from all the domain I guess…
The last check is one hour old - (that post Weird certificate problem - #7 by JuergenAuer ).
If you have changed your configuration, then you can recheck your domain.
But if I recheck, then what?
Is there a proper way to have a certificate with cloudflare? Or better to remove cloudflare?
The tool is only an online tool to see the configuration. Without too much manual checks.
There are a lot of websites using Cloudflare. But I don't know the details, I don't use Cloudflare. You can use it with an own working certificate. But then you need first a working configuration, then activate Cloudflare.
The thing is now I need to copy all the A records and everything manually back to namecheap…
Cloudflare copies them automatically the other way around…
You don't need to stop using Cloudflare entirely.