Letsencrypt does not renew when A Records are proxied through cloudflare #1656
-
|
Whenever a domain has its A records proxied through Cloudflare the letsencrypt fails and does not renew because the IPs Letsencrypt sees are different example.com 104.21.7.217 This not only fails to renew the certificates but whenever we use the ee site ssl-renew --all if a site fails then the script ends. Has anyone figured out how to fix this? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Update: In order to save everyone's time First, you need to Integrate your easyengine setup with Cloudflare by doing the following
That will do it. |
Beta Was this translation helpful? Give feedback.
Update:
In order to save everyone's time
First, you need to Integrate your easyengine setup with Cloudflare by doing the following
Replace [email protected] with your Cloudflare email
ee config set le-mail [email protected]Get your API key from Cloudflare [https://support.cloudflare.com/hc/en-us/articles/200167836-Managing-API-Tokens-and-Keys#12345682] and replace with it.
ee config set cloudflare-api-key <cf-api-key>Set the preferred SSL Challenge to DNS
ee config set preferred_ssl_challenge dnsThat will do it.