Questions regarding SSL/TLS

xd003 · August 6, 2024, 7:15am

I am just setting up my domain on cloudflare and needed to clear off certain doubts. For info, I use traefik for reverse proxy and certbot for generating the ssl certificate.

In SSL/TLS -> Overview -> SSL/TLS encryption mode , which one should i select between Flexible , Full & Full (strict) ?
I have already setup traefik to do HTTP->HTTPS redirection & set HTTPS as default. So in SSL/TLS -> Edge Certificates , should i enable Automatic HTTPS Rewrites & Always Use HTTPS or keep both of them off ? Here's the are the relevant SSL/TLS options i am using in traefik v3 to better guide me with the suitable cloudflare settings.

    - --entrypoints.web.address=:80
    - --entrypoints.web.http.redirections.entrypoint.to=websecure
    - --entrypoints.web.http.redirections.entrypoint.scheme=https
    - --entrypoints.web.http.redirections.entrypoint.permanent=true
    - --entrypoints.websecure.address=:443
    - --entrypoints.websecure.asDefault=true
    - --entrypoints.websecure.http.tls=true

bluepuma77 · August 6, 2024, 7:28am

Sounds more like Cloudflare questions than Traefik questions. Not sure you get them answered here.

Topic		Replies	Views
Setting up Traefik with Cloudflare and Origin Certificates Traefik v3 (latest) docker	1	896	October 11, 2024
Traefik, cloudflare proxy and splitdns - how to use different certificates on entrypoints? Traefik v3 (latest) file , letsencrypt-acme	7	264	October 1, 2024
Questions regarding my Traefik 3 configuration Traefik v3 (latest) docker , letsencrypt-acme , cli	2	149	June 6, 2024
TLS configuration confusion Traefik v2 docker , file , tcp	3	825	January 31, 2023
HTTPS Redirection Default Traefik v2 docker , middleware	2	684	May 21, 2020

Questions regarding SSL/TLS

Related topics