Learn about Centmin Mod LEMP Stack today
Become a Member

Letsencrypt Cloudflare SSL How to disable let's encrypt ssl ?

Discussion in 'Domains, DNS, Email & SSL Certificates' started by pesof, Oct 10, 2017.

  1. pesof

    pesof New Member

    7
    3
    3
    Oct 3, 2017
    Ratings:
    +3
    Local Time:
    12:37 PM
    1.13.5
    Hi,
    I have just finished my WordPress working and running with Let's encrypt SSL using the
    123.09beta01 addons/acmetool.sh .

    then after noticing too much high CPU usage, I decided to move the DNS servers to CloudFlare (to use their free CDN) which gave me shared SSL.

    Is there is any way to remove the let's encrypt stuff that I installed using the script?
    I mean the SSL is working perfectly but just don't want the let's encrypt to stay on my server since I won't use them.
    Any ideas?
     
  2. eva2000

    eva2000 Administrator Staff Member

    30,196
    6,789
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,144
    Local Time:
    7:37 PM
    Nginx 1.13.x
    MariaDB 5.5
    letsencrypt itself won't raise cpu usage so putting your server behind cloudflare ssl is fine, just leave your site on letsencrypt ssl and make it more secure by switching cloudflare from flexible ssl to full ssl so that cloudflare talks to https version of your site. This is more secure and protects you in future when or if you need to move away from cloudflare, your site will still be https with ssl.
     
  3. pesof

    pesof New Member

    7
    3
    3
    Oct 3, 2017
    Ratings:
    +3
    Local Time:
    12:37 PM
    1.13.5
    yes, the default option was full SSL,
    So just to check if I understand correctly,
    Using the full option in CloudFlare will use the let's encrypt ssl itself ?
    But wouldn't Let'sEncrypt check for A record to renew my ssl certificate after 90 days ?
    Since cloudflare changes the A records to hide the server ip.
     
  4. eva2000

    eva2000 Administrator Staff Member

    30,196
    6,789
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,144
    Local Time:
    7:37 PM
    Nginx 1.13.x
    MariaDB 5.5
    No with full ssl, cloudflare serves visitors the cloudflare ssl but communicates with your site via letsencrypt ssl https so both ends are encrypted. Flexible ssl is less secure as cloudflare communicates with your site via non-https so not encrypted.

    addons/acmetool.sh validates domain using webroot authentication a /.well-known generated file not via DNS. DNS is only requirement to point domain to right server which cloudflare would do anyway.
     
  5. pesof

    pesof New Member

    7
    3
    3
    Oct 3, 2017
    Ratings:
    +3
    Local Time:
    12:37 PM
    1.13.5
    well will my let's encrypt certificates still auto renew even though CloudFlare changed my A records?
     
  6. eva2000

    eva2000 Administrator Staff Member

    30,196
    6,789
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,144
    Local Time:
    7:37 PM
    Nginx 1.13.x
    MariaDB 5.5
    yes explained
     
  7. pesof

    pesof New Member

    7
    3
    3
    Oct 3, 2017
    Ratings:
    +3
    Local Time:
    12:37 PM
    1.13.5
    Oh thanks alot them that will save me time, though I had to go through all over the installation process.
    Thanks alot :)
     
    • Like Like x 1