Reputation: 314
Cloudflare With AWS ELB using AWS certs
I’m trying to configure Cloudflare to sit in front of my AWS application that uses AWS issued certificates with an AWS via an ELB.
Currently I’ve just point a cname in clouflare to my ELB that uses an AWS cert to serve my application securly, but I’m gettign an error “ERR_SSL_VERSION_OR_CIPHER_MISMATCH”.
I haven’t uploaded any certs to cloudflare as I can’t export AWS issued certs. I also haven’t generated any certs via cloudflare.
Do certificates on cloudfare need to match certs on AWS? Can I use a gerenated cert on cloudflare with my AWS cert? Should I get new certs from a 3rd party and use them in both Cloudflare and AWS?
Upvotes: 1
Views: 1961
Answers (2)
Reputation: 145
If you want to configure Cloudflare, it is best to use LetsEncrypt SSL Certificates. You would not need an ELB to implement SSL on the server which would help you in reducing costs.
You can visit https://certbot.eff.org/ and Select your server software and OS of your instance and it will show you the steps.
Also, Keep Full SSL in Cloudflare Settings under Crypto, "Full (Strict)" would probably not work
Upvotes: 0
Reputation: 2798
You need to acquire certs for CloudFlare since it breaks the protocol and inspects your communication and fronts your site. It isn't a pass through like you would see with a TCP load balancer.
The AWS certs on your ELB should be ok to leave in place.
Upvotes: 2
Related Questions
- How To Get SSL Working with Elastic Beanstalk, Route53 and Cloudflare
- Setting up HTTPS for ELB and EC2
- CORS request did not succeed - Cloudfront and ELB over HTTPS
- Cloudflare SSL on Ec2
- AWS ElasticBeanstalk + cloudflare
- Redirecting AWS ELB HTTP Requests to HTTPS
- SSL offloading on AWS Cloudfront level
- Cloudfront, ELB and SSL
- How to attach pre-uploaded SSL cert to ELB in CloudFormation template?
- AWS ELB Server-Side HTTPS