Troubleshooting Cloudflare Issues

Cloudflare is a service that can make your websites faster and more secure. While WeWP works well with Cloudflare, certain Cloudflare settings can cause problems. This document aims to highlight those issues for you.

Too many redirects

If you're seeing the ERR_TOO_MANY_REDIRECTS error on your HTTPS-enabled site using Cloudflare, it's probably because your SSL setting in Cloudflare is set to Flexible. You should change it to Full (strict) to ensure complete encryption from end to end.

The SSL setting can be found under the SSL/TLS tab.

Unable to verify DNS

When you're setting up an HTTPS site with WeWP, we need to make sure your domain's DNS is set up correctly to get a Let’s Encrypt certificate. To do this, we place a file on your server and check if it's accessible using your domain name. This works even if you're using Cloudflare's proxy service.

But here's the catch: for this check to work, your domain needs to be reachable over regular HTTP (port 80). If you have "Always Use HTTPS" turned on in Cloudflare, this check fails because it forces HTTPS connections.

To fix this, we suggest turning off the "Always Use HTTPS" setting. WeWP will take care of redirecting HTTP to HTTPS for you once your site is set up.

You can find the "Always Use HTTPS" setting in Cloudflare under SSL/TLS > Edge Certificates.

Unable to renew your HTTPS certificate.

If you get an email from WeWP saying your website's HTTPS certificate couldn't be renewed, it might be because of how your Cloudflare firewall is set up. The firewall might be blocking the tool (called Certbot) that's supposed to renew your certificate automatically.

Here's what you can do:

  1. Go to your Cloudflare account and find the Firewall section.

  2. Look for something called "Bot Fight Mode" in the Firewall settings for your website's domain. If it's turned on, switch it off

Another thing to check is if you have a Firewall rule that blocks bots.

  1. Go to your Cloudflare account and click on Firewall.

  2. Then, click on Firewall Rules.

  3. Look for any rules that might be blocking bots. If you find one with the action set to "Block" and the description mentioning "Known Bots," try turning it off by toggling the switch on the right side of the rule

Last updated