HAproxy and Cloudflare DNS (522 error)
I have bought a domain name from Namecheap to host a domotica web app on a local computer on my network. My router/mini-pc is running pfSense.
I use the HAproxy - SSL Offloading and ACME for taking care of the letsencrypt certificates.
To avoid buying a Namecheap API for ACME create/renewal certificates, I have set up the DNS records in Cloudflare. The Issue/renewal with method "DNS-Cloudflare" was valid.
But when I enter my domain name to connect to the host I get a 522 error page. The message was that the request was able to connect the webserver but the request didn't finish.
Strange is that if I go back to the Namecheap DNS servers, there is no Error.
Is pfSense or HAproxy blocking Cloudflare DNS servers?
- I also run pfBlockerng (but DNSBL is not activated)...when I turn it off same 522 error
- On Cloudflare I have activated DNSSEC
I already figured it out.
Changed 2 options in my Cloudflare account
Under SSL/TLS menu:
Default setting was Flexible, but needs to be Full(Strict)
I had checked "Always use HTTPS" to ON....but needs to be OFF
Thats it...I think it was the HTPPS trick...because in HAproxy I use SSL Offloading and HTTP to access the Host