CD
Cloudflare Developers•6mo ago
Josh R

How to troubleshoot 522 errors

Hello, I am getting 522s when connecting to my webserver using proxied A Records for my domain. My setup: Proxied A Record with Cloudflare points to my public IP. My router port-forwards to a Windows box on my home network.
Requests to https://{publicip}:port route properly, and all is good.
Requests through the proxied A Record fail with the 522. If I turn off proxying in cloudflare (so it's a regular A Record), everything routes properly. I have tested by turning off Windows Firewall, and I get the same result (522 if proxy is enabled, 200s if it's DNS only). I've read the Troubleshooting 5XX errors page, and am confident that Cloudflare IPs aren't being blocked, and that there's no load or rate-limiting issues. So, my question: How do I troubleshoot this further?
6 Replies
AlphaCentauri
AlphaCentauri•6mo ago
Are you using one of the ports listed on this page which Cloudflare supports with proxying: https://developers.cloudflare.com/fundamentals/reference/network-ports/ Is this regular HTTP/HTTPs traffic you're trying to proxy?
Network ports · Cloudflare Fundamentals docs
Learn which network ports Cloudflare proxies by default and how to enable Cloudflare’s proxy for additional ports.
Josh R
Josh R•6mo ago
It's regular HTTPS on 443 Also of note: I have 'SSL/TLS encryption mode' set to Flexible
AlphaCentauri
AlphaCentauri•6mo ago
Yeah you should set that to full/full (strict) if you want Cloudflare to make a connection to your origin via HTTPS
Josh R
Josh R•6mo ago
Wow. I can't believe I didn't try that....I guess I made the assumption that I'd start less-secure to get it working, then tighten it up once it's working. That was it. Thanks.
AlphaCentauri
AlphaCentauri•6mo ago
Haha awesome! Glad you got it working 😄
Josh R
Josh R•6mo ago
...I think I just realized that I did try Full initially, but I was using a non-standard port at that time...then I came across the article about ports, and changed to 443, but by that time I had already changed to Flexible. SMH. Thanks
Want results from more Discord servers?
Add your server
More Posts
Seeking Guidance: How to Self-Host Bitwarden with Cloudflare IntegrationHello there, I'm diving into setting up Bitwarden on a Linode VPS and honestly, I'm pretty new to aWAF Logs Data DownloadHi there, I've just got struck by a DDOS attack and I am trying to download the logs from WAF, howevCloudflare strips external domains from form action attribute?Hey guys, I am running into a problem with HTML forms. On a form action with an external link like sCloudflare Worker Deployment Branch URLsIs it possible to have individual branch URLs for cloudflare workers deployments (similar to CloudflCan't get wrangler to work with SSL certsOk, so I have a following dev setup: * nginx reverse proxy as an entry point * pointed at at a workeHi. So i need help about the cloudflare network like what is what ? Thank YouAnything like starter kit or smthng ?Cloudflare Enterprise AccessWhat's the fastest way to upgrade to Cloudflare enterprise? We've been seeing some advanced attackMail Routes I want to forward all mail reciveI want to forward all mail recived to `support@domain.com` to multiple mails `1mail@gmail.com`, `2maHoneycomb · Cloudflare Pages docsHey community 👋 I have question about observability. Has anybody been able to successfully use Honegreetings! is there a way to import JSONgreetings! is there a way to import JSON collections from mongodb into D1?