CD
Cloudflare Developers•2d ago
johNN
Hi, i have installed pterodactyl panel and i'm facing some problems related to using an alias ip.
39 Replies
johNN•2d ago
For example i have here an web hosting page
johNN•2d ago
johNN•2d ago
my alias is "uk.felipefogaca.dev" setup with node alradyalso my node domain is thiswhen trying to connect it
johNN•2d ago
goes with SSL protocol error
johNN•2d ago
but if i use the vps ip + port, goes alright
johNN•2d ago
i have only two dns setup, one for panel and one for node
johNN•2d ago
johNN•2d ago
both with certificates done in the vps
johNN•2d ago
ps.: the panel and node are installed in the same machineps.: i tried to get some help with ptero members in their discord and they have told me to go cloudflare discord for this
Chaika•2d ago
I see this:
Chaika•2d ago
if it's unproxied blurring the IPs is useless as anyone can dns query to get them anywayand also unproxied means CF isn't in the middle/not the issue with sslFor me, the issue I see is that on the uk
subdomain it's trying to use the panel
certificateoh I didn't specify the port, https://uk.felipefogaca.dev:25569/
I just get connection refusedregardless this would be an issue with your origin since it's unproxied, CF isn't in the middle, double check your configs
johNN•2d ago
thank you so much for the responseactually for some reason my panel is with CF in the middleconnected with SSL and everythingbut the node isnt collaborating hahah
Chaika•2d ago
the panel subdomain doesn't have proxy enabled/cf in the middlenor uk
you can tell by the "DNS only" proxy status, or from the end user point of view, if you do a dns lookup and see two CF IPs (ex: 104.x,172.x), or look at response headers and look for server: Cloudflare
Chaika•2d ago
Chaika•2d ago
possible that you used to have them proxied and just now unproxied and your DNS Cache has you still going to Cloudflare though, if you had them proxied recently
johNN•2d ago
ive already flushed my dns cache and still nothing
Chaika•2d ago
"still nothing" in what way? What are you looking for?Your origin has an actual misconfiguration and is serving the wrong tls certificate for port 443. For port 25569, it doesn't respond at allIf you're seeing Cloudflare in the middle, clearing dns cache (and switching from your ISP's default resolver, they ignore cache ttl sometimes) could help get that issue out of the way
johNN•2d ago
i did a complete reinstall and re-certificate to make sure that isnt that the problemi still got the same problem with the panel installed againive asked for someone that knows pterodactyland he answered me this:"Automatic rewrites that are transforming all requests to https, regardless of the actual destination (TCP Port : 25565) the browser is being sent to HTTPS. Neither 443 or 80 are exposed and no SSL Certificate is being specified."
johNN•2d ago
i am using TLS on flexible and doesnt do much
johNN•2d ago
i don't have any rules setup related to the domainjust fresh recent bought domain from CFdns records still the sameall pointed to the VPS
Chaika•2d ago
None of those settings in CF matter as long as your dns records are dns-only and not proxiednot automatic https rewrites, not encryption mode, etcYour origin, directly, is serving the wrong certificate for uk
, it's serving panel
That is an origin configuration error, in nginx it'd be a misconfiguration of the ssl cert. Not sure what pterodactyl uses but regardless it's something on the origin's end
johNN•2d ago
but both got their certs now
Chaika•2d ago
That's for 80/443 at least. For the port 22569, it just doesn't respond. Cloudflare proxied wouldn't even work for 25569 because it's not a supported edge port
Chaika•2d ago
on 443/https I still see this
Chaika•2d ago
even directly to the IP:25569 I just see this:
johNN•2d ago
http://179.61.226.215:25565/should work likehttp://uk.felipefogaca.dev:25565also they are dockerized
johNN•2d ago
message from a friend:
Chaika•2d ago
that's a different port https://discord.com/channels/595317990191398933/1242856081013739620/1242856416121847908above you shared 25569that's 25565
johNN•2d ago
yeah because after the panel reinstalli had to create another instance
Chaika•2d ago
ah ok, that was certainly some of the confusion. I see this error now
johNN•2d ago
so the panel reallocate another port by automatic
Chaika•2d ago
The reason whyhttp://179.61.226.215:25565/ works andhttp://uk.felipefogaca.dev:25565/ doesn't is because all dev
domains are forced HTTPS (secure). So you're constantly and forced redirected to https
, which won't work with your origin which only supports http/plaintext
johNN•2d ago
i didnt know thatdamn
Chaika•2d ago
If you use a headless client like Insomnia (a rest api tool) which doesn't respect dev forced https (called hsts preloading), you can see it does actually work on the domain
Chaika•2d ago
but browsers will always force https for all dev
domains
johNN•2d ago
so technically to fix this errori need to change my domain extension"dev"
Chaika•2d ago
no lol, just get a proper ssl certificate like from certbot/let's encrypt for free, and then setup your origin with thatyou already have one for uk
do you not? You just need to configure your hastebin setup to use that. You could throw nginx in front and have it reverse proxy your container
johNN•2d ago
got it, thank you for your assistance!i didnt know some extensions force ssl by itselfshouldve know that
Chaika•2d ago
all the google ones do, forced hsts preloading
Cloudflare DevelopersJoin
Welcome to the official Cloudflare Developers server. Here you can ask for help and stay updated with the latest news
48KMembers
View on DiscordWant results from more Discord servers?
Add your server
More Posts
build status on githubIs there a way to disable CF Pages build status showing in GitHub RepoI am talking about thisnpm login errorIm trying to setup a new pages site and am getting an npm login error. this is not the first site i redirecthello I would like to redirect a domain name to a minecraft server I have configured the SRV and thefunctions/ in deploy directory?It seems that I can only get wrangler to upload Functions when there's a functions/ directory in theRedirecthello I would like to redirect a domain name to a minecraft server I have configured the SRV and thecan't deploy exampleuntil now I've used the github integration, but I wanted to start a mono-repo and created a dummy prGotcha, I guess I can do that. Would theGotcha, I guess I can do that. Would the `cf` object still be stripped when passing the `Request` thFetching assets in Chrome sometimes results in a long "pending" time before transfer startsI have an issue where sometimes (although rarely) my app takes a very long time to load. InvestigatiWhy am I not receiving my password reset Cloudflare email?I've been trying to log into my account for two days. I can log into my account from my work's compuI'm looking for a way to replicate worker wrangler.toml/routes in local dev mode```toml# wrangler.toml# ...routes = [ { pattern = "example.test/api*", zone_name = "example.te