I’m trying to configure Cloudflare to sit in front of my AWS application that uses AWS issued certificates with an AWS via an ELB.
Currently I’ve just point a cname in clouflare to my ELB that uses an AWS cert to serve my application securly, but I’m gettign an error “ERR_SSL_VERSION_OR_CIPHER_MISMATCH”.
I haven’t uploaded any certs to cloudflare as I can’t export AWS issued certs. I also haven’t generated any certs via cloudflare.
Do certificates on cloudfare need to match certs on AWS? Can I use a gerenated cert on cloudflare with my AWS cert? Should I get new certs from a 3rd party and use them in both Cloudflare and AWS?
You need to acquire certs for CloudFlare since it breaks the protocol and inspects your communication and fronts your site. It isn't a pass through like you would see with a TCP load balancer.
The AWS certs on your ELB should be ok to leave in place.