I have been trying to get the clients to cooperate with cloudflare waf rules for a while but without success. I have set up a rule that only devices with a client certificate can access the website/domain of my nextcloud self-hosted server. The problem so far is that it doesn’t present or even knowledge that it is supposed to use mTLS. I am not talking about my nextcloud server but the cloudflare waf rule infront of it. mTLS has worked without problems when setting it up in nginx with mTLS. Only when using cloudflare waf rule the clients fail to present or know that there is mTLS in place. So they just say they cant reach my server
hi @Ritna1 welcome to this community
from your post I see the problem is related to cloudflare which often cause problems
I don’t really see how we can help you please seek support from cloudflare
Firstly, thank you very much for the fast reply. I am guessing this is a recurring problem. Is there any way the client expects something that Cloudflare isn’t delivering? Also, what is your opinion on using it via nginx, I am quite new to all of it and I don’t really know how secure what is. It’s definitely better than nothing, but how likely is it that someone can go around nginx because of some kind of volubility?
please review topics tagged cloudflare often they add some script “voodoo” which brakes things
Ok I will search through some things and contact Cloudflare. Thanks for your help. Gute Nacht