Questions regarding SSL/TLS

xd003 · August 6, 2024, 7:15am

I am just setting up my domain on cloudflare and needed to clear off certain doubts. For info, I use traefik for reverse proxy and certbot for generating the ssl certificate.

In SSL/TLS -> Overview -> SSL/TLS encryption mode , which one should i select between Flexible , Full & Full (strict) ?
I have already setup traefik to do HTTP->HTTPS redirection & set HTTPS as default. So in SSL/TLS -> Edge Certificates , should i enable Automatic HTTPS Rewrites & Always Use HTTPS or keep both of them off ? Here's the are the relevant SSL/TLS options i am using in traefik v3 to better guide me with the suitable cloudflare settings.

    - --entrypoints.web.address=:80
    - --entrypoints.web.http.redirections.entrypoint.to=websecure
    - --entrypoints.web.http.redirections.entrypoint.scheme=https
    - --entrypoints.web.http.redirections.entrypoint.permanent=true
    - --entrypoints.websecure.address=:443
    - --entrypoints.websecure.asDefault=true
    - --entrypoints.websecure.http.tls=true

bluepuma77 · August 6, 2024, 7:28am

Sounds more like Cloudflare questions than Traefik questions. Not sure you get them answered here.

Topic		Replies	Views
Improving the SSL rating Traefik v2	5	8573	December 11, 2019
Hi team, how to setup traefik to use ssl certificates generated by cloudflare, please help! Traefik v2 kubernetes-ingress	0	356	June 19, 2020
Docker, Traefik v2, SSL cannot set default cert Traefik v2 docker	2	831	October 15, 2019
Trouble understanding how traefik picks up a custom SSL certificate for a domain Traefik v2 docker , docker-swarm	15	21323	December 14, 2020
Letsencrypt change for Traefik Traefik v2 letsencrypt-acme	2	572	August 21, 2020

Questions regarding SSL/TLS

Related topics