Hi, I'm running ispconfig 3.2.9p1 with apache on debian 11. I have a dozen sites already up and running perfectly. I'm trying to add another site but this site is using cloudflare for DNS. I've added the site as normal (no ssl/lets encrypt yet) but when I browse the site, it's returning the wrong site (the 1st list in ispconfig returns). IPv4-Address is set to * for all sites. Is there something special I need to add to deal with cloudflare? I have no access to cloudflare setup , it's controlled by another vendor. Do they need to do something special for ispconfig setup? All I asked them so far was to point the DNS A record to my hosting server IP. Any tips much appreciated. Thanks
For http challenge which is ISPConfig default, the answer is no and no. The IP address for DNS A record is all you need most of the time.
No. No. If you get the first site, then no better matching site for this domain + port combination exists on the server. So maybe you have no SSL enabled or no SSL cert and they redirect to https and not http or there is a typo in the domain name.
Thanks for the quick replies. So I think it must be the SSL issue. I did not attempt to enable letsencrypt having read that this was a problem for use with cloudflare. I just tried to enable it but it fails to enable, presumably because it can't resolve the domain back to my hosting server address or maybe cloudflare is suppose to deal with that? Can I use let's encrypt or do I need to sort out a paid SSL cert?
You can not use Let's encrypt when proxying is enabled at CloudFlare as CloudFlare blocks the requests when LE tries to reach your server to authenticate the certificate. But technically, you do not need an officially signed SSL cert. You can create a self-signed SSL cert on the website's SSL tab. The website visitors will not see it as they see only the CloudFlare certificate, but you must turn of strict SSL verification on CloudFlare then. The connection is fully and securely encrypted then, but SSL cert authenticity is not verified between CloudFlare and your server. If the site is a more important site, then it might be better to use SSL cert that you buy for it. But technically, its not needed to encrypt data between CloudFlare and your server.
I've enabled SSL and created a self-signed cert. It now seems to work ok. Have I done the right thing here? Is it true I cannot use letsencrypt with cloudflare? Is the self-signed cert sufficient or do I need to get a paid cert? Thanks again for the direction.
Sorry, hit reply before I read your reply. Sounds good. The site is not critical so I think I'll be fine. Thanks again for the instant help.
