I moved my website hosting to Inmotion from Bluehost but the domain is currently on Bluehost(it had Cloudflare on Bluehost). Now I moved it to Inmotion hosting and I create a Cloudflare account for it to set up on my website. I set up Cloudflare and changed domain DNS to Cloudflare DNS, but now when I start Cloudflare from my Cloudflare panel it shows ERROR 526 on my website. I spoke to Inmotion support and Bluehost support many times and they told me I should contact with Cloudflare team because the problem is from Cloudflare and nobody answered me there.

For more information, I went all the ways that were found in the Cloudflare community or in google but couldn't solve this problem. Please help me.

1

1 Answer

Cloudflare error 526 triggers when Cloudflare is unable to validate server’s SSL/TLS certificate. It normally happens with Full SSL(Strict) mode in the Cloudflare.

What the mode you use in cloudflare? Full (strict) mode? If yes, see it:

Full (strict) mode is the most common reason for the 526 error. A quick fix to solve it would be to change the SSL mode to Full instead of Full (strict) from the Overview tab of Cloudflare SSL/TLS section for the particular domain. If the issue persists even after changing the SSL mode to Full, then it would be more likely related to the origin web server’s SSL certificates. We need to verify that: 1. The certificate is not expired 2. The certificate is not revoked 3. The certificate is signed by a Certificate Authority such as GlobalSign, Verisign, GeoTrust, Comodo, etc, and is not a self-signed SSL certificate. 4. The requested domain name and hostname are in the certificate’s Common Name or Subject Alternative Name. 5. Origin web server accepts connections over port SSL port 443 6. Temporarily pause Cloudflare and cross-check the certificate with any SSL verification sites like to verify that no issues exist with the origin SSL certificate. If the origin server is using an expired, revoked or self -signed certificate, the next step to fix this error would be to install a proper SSL certificate signed by a Certificate Authority. Likewise, it is important to have the requested domain name and hostname in the certificate’s Common Name or Subject Alternative Name. If we have added a CNAME for the hostname on Cloudflare, the Common Name or SAN may also match the CNAME target. Cloudflare can also issue origin certificates to you on request if you don’t want to pay for or acquire one from a third-party. The 526 error should disappear after the installation of a valid certificate on the origin server and the server it accept secure (HTTPS) connections. 

If you want to change another mode:

In CloudFlare panel Domain -> SSL/TLS -> Overview -> Pick the mode). When you select a mode it is shown how encryption will work.

If you use 80/tcp port in endpoint, you need use mode Flexible (Encrypts traffic between the browser and Cloudflare).

But if you use 443/tcp port in endpoint you need use mode Full (Encrypts end-to-end, using a self signed certificate on the server). For Full mode available to use self-signed SSL certificates in your virtual host.

Your Answer

Sign up or log in

Sign up using Google Sign up using Facebook Sign up using Email and Password

Post as a guest

By clicking “Post Your Answer”, you agree to our terms of service, privacy policy and cookie policy