Let'sEncrypt with Cloudflare

Flexible SSL is just a marketing SSL. It only print the green padlock to your visitors, but not safe at all. Using full SSL with letsencrypt + cloudflare is already better, but be careful for the renewal because if letsencrypt doesn’t use your VPS IP, it will fail.

so how can I renew Lets encrypt certificate without disabling cloudflare?

I have setup a cron job for renewing lets encrypt which runs every monday.

You can’t.

what about this ?

In such case one won’t be using EE’s Let’s Encrypt interface.

If you want to use EE to activate Let’s Encrypt you’ll need to deactivate CloudFlare cache for certificate renewal.

The easiest will be to use cloudflare origin certificates. You can activate “full strict” mode and use it for up to 15 years.

1 Like

LE has a weird issue with having locales set on Ubuntu 16.04. Make sure you have them set up. Just run

export LC_ALL="en_US.UTF-8"
export LC_CTYPE="en_US.UTF-8"

or run this

export LC_ALL="C"

If that doesn’t work, try the following and run the command again.

locale-gen en_US en_US.UTF-8
dpkg-reconfigure locales

I hope it helps.

1 Like

I followed this instruction and it worked perfectly

What I’m going to show here in this post is, How to Configure Let’s Encrypt with CloudFlare setup. I’m sure many SEO’s configured their site with Cloud Flare, so this post is for them.

Did the job, thanks a lot. I’m curious how you found that!