Website URL
www.dkb.si
Error Message
Error 525 - SSL Handshake Failed
Other Information
I have both live and installed SSL on the origin and CF is proxying everything that it can. (all the dkb.si paths). But the CF can’t reach to origin server.
www.dkb.si
Error 525 - SSL Handshake Failed
I have both live and installed SSL on the origin and CF is proxying everything that it can. (all the dkb.si paths). But the CF can’t reach to origin server.
I second this issue on my custom domain (dmalsan.com).
While the announcement does not state any direct changes to the SSL of custom domains, this issue seems to be related since it has happened at the same time as this big change in SSL certificates.
Ok I fixed my site by doing this:
I had to do all 3 to get it the site to work. The site does still redirect http to https despite doing all that.
Not working, getting 403 forbidden now. I did -
But now I am getting the 403 error when trying to access the site.
The point is, our config with CF was working fine before the Free SSL change, so we shouldn’t be doing any of these stuff. Maybe the infinityfree devs should look into this issue. The config with CF and custom domain was working fine with all the full SSL and HTTPS settings before the update.
I responded to this issue in the official announcement:
However, I propose we continue this discussion here.
I see that your website is up now, could you please tell me what did you do to solve the issue? i still has the 525 issue. When i switch to flexible config in CF, i get the “certificate not trusted” error.
To solve it, try following the steps in the post the admin quoted right above your post.
Do you? Because the screenshot shows a completely different issue.
The screenshot shows a ERR_TOO_MANY_REDIRECTS error. I checked your domain name, and there is a valid Let’s Encrypt certificate installed too.
Could you please verify that your website is actually configured to use “Full” SSL mode (or “Full (strict)”) in Cloudflare? If it uses Flexible SSL, that tends to cause issues with website that aren’t setup to deal with Flexible SSL (not to mention that you wouldn’t even be using the SSL certificate at all).
I would just like to say that my problem resolved itself today and I didn’t have to touch the SSL settings at all so uh good luck guys! I guess the issue just worked itself out on its own