Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
litespeed_wiki:config:cloudflare-ssl-require-sni [2019/10/03 19:25] Jackson Zhang created |
litespeed_wiki:config:cloudflare-ssl-require-sni [2021/10/23 18:07] (current) George Wang |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== CloudFlare TSL/SSL requires SNI(Server Name Indication) on Virtaul Host in addition to listener level ====== | + | ====== Cannot Establish TSL/SSL Connection with Cloudflare ====== |
+ | If a domain cannot establish a TSL/SSL connection when using Cloudflare, it is likely because Cloudflare requires a Server Name Indication (SNI) at the virtual host level, in addition to the listener level. | ||
- | A domain could not establish tsl/ssl connection when using Cloudflare. It might show the following in your Chrome or Firefox browser: | + | You may see the following notice in your Chrome or Firefox browser: |
The site can't provide a secure connection | The site can't provide a secure connection | ||
example.com users an unsupported protocl | example.com users an unsupported protocl | ||
Line 8: | Line 9: | ||
{{:litespeed_wiki:config:cloudflare-sni-can_t_providesecureconnection.png?600|}} | {{:litespeed_wiki:config:cloudflare-sni-can_t_providesecureconnection.png?600|}} | ||
- | Or | + | Or, you may see this: |
Secure Connection Failed | Secure Connection Failed | ||
An error occurred during a connection to example.com. Peer reports incompatible or unsupported protocol version. | An error occurred during a connection to example.com. Peer reports incompatible or unsupported protocol version. | ||
Line 14: | Line 15: | ||
| | ||
{{:litespeed_wiki:config:cloudflare-sni-secureconnectionfailed.png?600|}} | {{:litespeed_wiki:config:cloudflare-sni-secureconnectionfailed.png?600|}} | ||
- | + | ||
- | CloudFlare requires [[https://www.cloudflare.com/learning/ssl/what-is-sni/|SNI(Server Name Indication)]]. The user will need to have virtual host level SSL cert configuration in addition to listener level, even they are identical. | + | ===== Solution ===== |
+ | Add SSL key/certificate configuration at vhost level under the SSL tab. | ||
+ | Even if the configurations are identical, CloudFlare requires [[https://www.cloudflare.com/learning/ssl/what-is-sni/|SNI]] to be set at both the virtual host level and the listener level. Do so, and the problem should go away. |