SSL Letsencrypt Cloudflare Is it worth installing letsencrypt when you have cloudflare

Yes worth it to have HTTPS on Centmin Mod Nginx origin when using Cloudflare if configured correctly for speed and security https://community.centminmod.com/th...s-to-origin-server-use-ecdsa-ssl-certs.14817/

 

yes it will stop serving the letsencrypt ssl cert to cloudflare during communication and use cloudflare origin ssl cert instead

 

You have 3+ megabyte sized pages from those screenshots so things will be slow either way - trying to keep page size between 200-800KB for non-image heavy pages is ideal and <800-1500kb for image heavy pages is also ideal

TTFB speed is relative so if your origin web server is located further away from WPT test location then TTFB is higher.

This is due to Cloudflare not caching HTML content by default (see below). So for optimal TTFB speed, you want your origin real web server to be hosted in a location closest to your majority traffic visitors and then put Cloudflare in front. For instance, my forums has 50% US visitors 40% Asian visitors and 10% Oceania. So my optimal geographic location for my origin is US West Coast as it sits in middle of US, Europe and Asian so equal round trip times for majority of visitors.

With Cloudflare enabled, TTFB isn’t as important when you compare to first paint, first contentful and meaningful paint and document load times. As those are metrics Google is looking for https://developers.google.com/web/fundamentals/performance/user-centric-performance-metrics and where Cloudflare will help you optimise for when it’s enabled.

webpagetest.org has advanced features you can use to reveal these additional Google focused pagespeed metrics i.e. Google Lighthouse Report

I wrote a guide for my users which maybe useful to you as well including enabling Google Lighthouse Report testing in WPT https://community.centminmod.com/threads/how-to-use-webpagetest-org-for-page-load-speed-testing.13859

Cloudflare cache certain static content https://support.cloudflare.com/hc/en-us/articles/200172516-Which-file-extensions-does-CloudFlare-cache-for-static-content but not dynamic/static generated html itself by default (which is what WPT TTFB is testing for). But you can tell Cloudflare to cache dynamic/static generated html content to some extent depending on Cloudflare plan you’re on via cache everything page rule but have to be careful to only do this for static html content and not dynamic html content (otherwise you would cache private logged in user content).

• How do I cache static HTML?
• How Do I Tell Cloudflare What to Cache?
• https://blog.cloudflare.com/caching-anonymous-page-views/ on CF Business plan you can properly distinguish between logged in users versus guests so tell Cloudflare via bypass cache on cookie page rules to only cache for guests the dynamic/static generated html content and bypass cache for logged in users. Then on CF Business plan you have access to Railgun which allows you to accelerate dynamic generated html content for the logged in users https://www.cloudflare.com/website-optimization/railgun/. Then there’s also Argo for optimising the routing to your origin as well https://www.cloudflare.com/products/argo-smart-routing/