Error 525 handshake failed ssl
One of my subdomains is all the sudden getting this error 525. All my other subdomains on the same domain work just fine except one. I tried changing the ssl to flexible but this did not fix the issue and actually prevented my other subdomains from working properly. I have all self signed certs
29 Replies
Feedback
Feedback has been submitted! Thank you :)
Everything was working fine 2 days ago and I didnt change anything
Any suggestions
If it's time-based, perhaps the cert expired on your origin
Well last night I renewed my cert to see if that would fix the issue and it did not
hm, I would also recommend making sure that the origin has the right date/time set
but that may not affect your problem
you can use
timedatectl to verifyThe date and time is set properly
Can you try setting SSL to auto in the dash?
Where is that at on the dash?
should look something like this (grabbed a screenshot from the blog post)
I changed it to automatic but still gives the same errror
What are you using on your origin to serve content/reverse proxy? Nginx, Apache, Caddy
Nginx
With certbot I presume?
Can you confirm that you receive a SSL certificate if you try and connect to your origin manually
Im using win-acme to create my self signed certs it auto renews thems
Is your origin running windows?
Yea win 11 pro
I would guess it's this kind of problem, where CF is trying to connect to your origin through https, but your origin provides no certificate
(Personally, I'm a fan of Caddy as a web server/proxy as it auto-provisions and keeps SSL certificates up to date for you, it also works on Windows)
The weird thing is all of my other certs are working fine with no issues and it's all set up the same way
from the windows machine, are you able to access the website through localhost?
or does the browser throw up an error
So it's qbitorrent and if I access the website locally via ip address and port yes it works fine
does a lock icon appear in the url bar?
if it does, and you click on it, what's the status of the certificate
That all that shows
Says connection is secure and certificate is valid
that's to cloudflare, can you show on localhost?
So you want me to use the local ip address and the port
If i try to access the website via the ip and port it says that the connection is not secure
Do you know anything about nginx
try clicking on advanced and proceeding
if you're not able to, please take a screenshot of that
I can access it and it works that way
I got it working I went back to a back up copy of a previous nginx because I saw it recently updated and now everything is working as it should be so im assume the update broke it some how