Configure dedicated SSL certificate from Cloudflare on my droplet

June 27, 2017 1.3k views
DigitalOcean Ubuntu

I recently bought a dedicated ssl certificate with cloudflare.

The certificate is active, however, the result test is as it follows:

curl -sv -o /dev/null --resolve
* Added to DNS cache
* Hostname was found in DNS cache
*   Trying my.ip.num.ber...
* Connection failed
* connect to my.ip.num.ber port 443 failed: Operation timed out
* Failed to connect to port 443: Operation timed out
* Closing connection 0

From cloudflare recommend me to open port 443 at my origin webserver/droplet.
How can i do this? do i need anything else to be done?

2 Answers

Hi @musicos

Since you're running Ubuntu, I'm guessing you might have setup the UFW firewall, so run this command to see if it's active and allowing port 443:

sudo ufw status

But I don't know how the dedicated certificate works on CloudFlare. I'm not sure if it's required to have encrypted traffic between CloudFlare and your server - if it is, then you need to put the certificate on your web server as well.
You should be able to see more in the control panel on CloudFlare - it should tell if it has connectivity with your server or not.

  • I have utf firewall active. I added port 443 since it wasn't listed.
    Do i need anything else?

    • Well, you need to set your web server to listen on 443 too for https traffic. And to do that, you would also need to add the certificate to the web server.

this is my actual configuration,

<VirtualHost my.droplet.ip.num.ber:80>


        DocumentRoot /var/www/mysite/



        ErrorLog /var/www/error.log

        CustomLog ${APACHE_LOG_DIR}/access.log combined

        <Directory /var/www/mysite/>
                Options Indexes FollowSymLinks
                AllowOverride All
                Order allow,deny
                Allow from all
                Require all granted


How can i use both ports?

Have another answer? Share your knowledge.