Join the community today
Become a Member

Error: Setting Up Cloudflare Authenticated Origin Pulls

Discussion in 'Domains, DNS, Email & SSL Certificates' started by Mrbo, Feb 27, 2019.

  1. Kuro

    Kuro Member

    82
    12
    8
    Feb 8, 2018
    Ratings:
    +19
    Local Time:
    6:55 AM
    1.15.10
    10.3
    Code:
    [02:16][root@D-145 ~]# ping6 -c4 www.google.com
    connect: Network is unreachable
    
    :ROFLMAO:
    So if my server has IPV6 I will need to add it to CF like this (@,www+ipv6) then run centmin.sh menu option 2, 22 ?

    upload_2019-4-1_10-32-45.png
     
  2. eva2000

    eva2000 Administrator Staff Member

    45,970
    10,442
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,203
    Local Time:
    9:55 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    no that network is unreachable means your vps/server's network connectivity for IPv6 is broken or not supported so need to contact web host to fix it if it's something on their end as to why IPv6 isn't working so nothing to do with cloudflare dns.

    or you can disable IPv6 on your server and choose not to use IPv6

    to disable ipv6 plenty of centos guides http://lmgtfy.com/?q=how+tp+disable+ipv6+on+centos :)

    like
    Or let Centmin Mod 123.09beta01 or newer versions disable IPv6 system wide by setting in persistent config file /etc/centminmod/custom_config.inc
    Code (Text):
    DISABLE_IPVSIX='y'
    

    then running centmin.sh once and exiting
     
  3. Kuro

    Kuro Member

    82
    12
    8
    Feb 8, 2018
    Ratings:
    +19
    Local Time:
    6:55 AM
    1.15.10
    10.3
    Okay I will try a server with IPV6 (Digital Ocean) if there are any errors. :ROFLMAO::ROFLMAO:
     
  4. Kuro

    Kuro Member

    82
    12
    8
    Feb 8, 2018
    Ratings:
    +19
    Local Time:
    6:55 AM
    1.15.10
    10.3
    Code:
    ZSTD_LOGROTATE_NGINX='y'
    ZSTD_LOGROTATE_PHPFPM='y'
    NGINX_LIBBROTLI='y'
    NGXDYNAMIC_BROTLI='y'
    PHP_PGO='y'
    PHP_BROTLI='y'
    PHP_LZFOUR='y'
    PHP_LZF='y'
    PHP_ZSTD='y'
    KEYLENGTH='ec-256'
    LETSENCRYPT_DETECT='y'
    DUALCERTS='y'
    
    Code:
    PING domain.com(2606:4700:30::681c:1e94 (2606:4700:30::681c:1e94)) 56 data bytes
    64 bytes from 2606:4700:30::681c:1e94 (2606:4700:30::681c:1e94): icmp_seq=1 ttl=62 time=0.692 ms
    64 bytes from 2606:4700:30::681c:1e94 (2606:4700:30::681c:1e94): icmp_seq=2 ttl=62 time=0.741 ms
    64 bytes from 2606:4700:30::681c:1e94 (2606:4700:30::681c:1e94): icmp_seq=3 ttl=62 time=0.592 ms
    64 bytes from 2606:4700:30::681c:1e94 (2606:4700:30::681c:1e94): icmp_seq=4 ttl=62 time=0.875 ms
    
    Log: https://pastebin.com/iein2dYx
    misssing origin.crt (Cloudflare)
    upload_2019-4-1_15-32-21.png

    upload_2019-4-1_15-35-41.png

    upload_2019-4-1_15-33-38.png
     
  5. eva2000

    eva2000 Administrator Staff Member

    45,970
    10,442
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,203
    Local Time:
    9:55 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
  6. Kuro

    Kuro Member

    82
    12
    8
    Feb 8, 2018
    Ratings:
    +19
    Local Time:
    6:55 AM
    1.15.10
    10.3
    Yes, I'm talking about why Cloudflare's ssl is empty (.CRT)
    If I use letsencrypt, will it be empty?
    I thought it would be created automatically.
    upload_2019-4-1_18-52-51.png
     
  7. eva2000

    eva2000 Administrator Staff Member

    45,970
    10,442
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,203
    Local Time:
    9:55 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    it should be created but will have to investigate
     
  8. eva2000

    eva2000 Administrator Staff Member

    45,970
    10,442
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,203
    Local Time:
    9:55 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    believe i just found the bug and fixed it in latest 123.09beta01 update, so run = cmupdate command to update your local code for the fix :)
     
  9. Kuro

    Kuro Member

    82
    12
    8
    Feb 8, 2018
    Ratings:
    +19
    Local Time:
    6:55 AM
    1.15.10
    10.3
    I bet many people have to do it manually before. :ROFLMAO::ROFLMAO::ROFLMAO:
     
  10. eva2000

    eva2000 Administrator Staff Member

    45,970
    10,442
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,203
    Local Time:
    9:55 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    well it's commented out in nginx vhosts by default so many folks won't notice unless they uncomment the referenced cloudlfare origin pull cert so probably why