Cloudflare to only encrypt traffic between client and CDN but non-secure connection from CDN to server

Question

My server has a main site which have SSL certificate installed. There is also a linux management panel which runs on port 8080 that does not support SSL. What I want is that the traffic from the client to CloudFlare is encrypted with CloudFlare's certificate, but leave the connection from CDN to my VPS server non-secure. Right now the SSL/TLS encryption mode is set to flexible, edge certificates shows active, and also I've turned off "always use https". When i tried to access the 8080 port with https prefix however I couldn't get through. Can someone offer me a way to acheive this: traffic from client to CDN encrypted, while CDN connects unsecured to my server. PS: I'm using the free plan of CloudFlare and since it's a personal site and I do not want to induce extra cost, hope I can solve this with in the free plan.

Answer 1

There are two ways to solve your problem using Cloudflare without any additional cost.

First of all turn ON always use HTTPS

1. Changing Flexible to Full in SSL/TLS setting in Cloudflare (Simple Way, No need any other setup in your server).

Which will encrypt the data transfer from Cloudflare to your server using a self-signed certificate.

2. Changing Flexible to Full(Strict) in SSL/TLS setting in Cloudflare (Need some work in your server).

For Full(Strict), Go to your origin server tab in SSL/TLS and press create a certificate to get your SSL Certificate. But this certificate is only valid between your server and cloudflare.

Then you need to install those certificates on your server.

Additional Steps(As you don't have an HTTPS setup in your VPS):

As you are using the port in your Webserver. So reverse proxy your application running on port 8080 using Apache, Nginx on the port 443. Check this answer for some idea.