Reputation: 4129
Adding Google-managed, auto-renewing SSL custom domain with cloudflare DNS
Trying to enable auto renewing SSL on google app engine but google says DNS records can not be found.
I have added them for subdomain, tried doing all A and AAAA records or just CNAME record (as cloudflare doesn't allow CNAME and A,AAAA on same subdomain), but no luck with google finding DNS records (even after waiting 24 hours).
Upvotes: 1
Views: 1535
Answers (1)
Reputation: 713
Whatever DNS records are needed by google to verify ownership of the domain should not be orange clouded/Proxied, they should be grey clouded/DNS only. Proxying will actually cause cloudflare to serve an A / AAAA record for their own servers/ips and on the requests to your origin server, they will use these entries. Google would not see the actual DNS entries to do the verification.
That being said, the A / AAAA records in your picture don't look like the verification records. I don't know anything about GCP/GAE, but generally the domain control verification records are TXT records or CNAME records. Regardless of this, the above applies. You need the DNS only mode to modify the actual DNS entries that everyone sees.
Upvotes: 6
Related Questions
- Google App Engine SSL error "DNS records could not be found" even though custom domain is working
- Google App Engine custom domain is not activating Google-Managed SSL
- Cloudflare Origin Certificate with Google App Engine
- App-engine custom domain not defaulting to HTTPS
- SSL Error using custom domain with Google App Engine
- How to setup my custom domain on gcloud
- Custom Domain Not working with google app engine
- SSL with Google App Engine custom domain
- Google App Engine - how to set up an SSL for Custom Domain