DNS timing out

I have entered the IP of my server to Cloudflare, but it is not working. I am just getting a timed out error. I am able to connect directly to the IP.
27 Replies
Chaika
Chaika13mo ago
DNS is timing out? What's the exact error? (the exact url you get the error on, if you can share it, would be helpful as well)
Pyx
Pyx13mo ago
The code is 522, and the URL is https://fts-new.pixellicio.us/. Going to just make it fts.... later but that'll be swapped out when I figure this all out Just disabled the Cloudflare proxy and http:// traffic is working, but https is giving the timed out error
Chaika
Chaika13mo ago
What's your ssl/tls encryption mode? In the Cloudflare dashboard, in your website, SSL/TLS -> Overview
Pyx
Pyx13mo ago
It's set to Flexible right now
Chaika
Chaika13mo ago
Flexible is insecure, you really want that to be Full (Strict), and then to configure your origin server to also work with https://. You can use Cloudflare Origin Certs ( https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/) if need a certificate & you plan on always having the website proxied, up to 15 years expiry and trusted by CF Proxy
Pyx
Pyx13mo ago
going to install that right now, hold on added it to my site and i'm getting a not secure warning wait hold on sorry i was going directly to the ip
Pyx
Pyx13mo ago
yeah same issue
No description
Chaika
Chaika13mo ago
it has to be proxied
Pyx
Pyx13mo ago
do i want to set it to strict rn too
Chaika
Chaika13mo ago
you should yea, only Full (Strict) is secure
Pyx
Pyx13mo ago
thanks so much, it's fully working took me two days to figure this out
Quint
Quint13mo ago
May I ask why flexible is insecure? It only means traffic from the cloudflare proxy to your server (and vice versa) wont be encrypted right?
Chaika
Chaika13mo ago
Insecure for the same reason why http:// is insecure and why browsers warn you about it. Even for static pages, someone in the middle could MITM the connection and inject ads/phising stuff/etc. Worse, you're lying to your visitors by making the site look secure even though it's not
Quint
Quint13mo ago
But that could only happen in the connection from the cloudflare proxy to your server right?
Chaika
Chaika13mo ago
Yes, which is still half of the request (except for cached assets)
Quint
Quint13mo ago
Mhm, that’s true
Eric
Eric13mo ago
Hello!
Quint
Quint13mo ago
I can def see it being better Hi
Eric
Eric13mo ago
I see you have gotten a error 522 on cloudflare! The most common reason why is because of slow internet / incorrect dns settings
Quint
Quint13mo ago
@Eric he made it work lickies
Eric
Eric13mo ago
oh
Quint
Quint13mo ago
Also you got a cool profile effect
Eric
Eric13mo ago
paincry wait this is the wrong server
Quint
Quint13mo ago
Lmao
Eric
Eric13mo ago
LOL MY MIND WENT TO THE WRONG SERVER AND STARTED HANDING HELP THREADS I THOUGHT THIS WAS ANOTHER SERVER
Chaika
Chaika13mo ago
In a perfect world, flexible wouldn't exist, it's more of a relic of the past. Browsers enforce and default to https for a reason, if the browser sees the connection is secure the implication is end to end. Espec when it's really not that hard to get https set up, CF gives you origin certs that last for up to 15 years for free
Quint
Quint13mo ago
Yeah that’s true Flexible is a bit deceiving if you look at it like that
Want results from more Discord servers?
Add your server