525 SSL handshake failed error from cloudflare

pppfz

1、Brief

After I installed everything according to the installation script, I successfully accessed the domain name registration page of cloudron. After I filled in the API of cloudflare, it also generated the corresponding DNS records. But when he jumps to my.domain.top, it shows that the SSL certificate handshake failed. I have tried a lot, but still haven't found a solution, please help me!

2、Some Information

3、Logs

Since I don't quite understand which part of the log is more important, I try to pick it up and it may be wrong. (/home/yellowtent/platformdata/logs/box.log)

2023-08-21T15:30:54.469Z box:locker Lock unreleased platform_start
2023-08-21T15:35:54.479Z box:locker Lock unreleased platform_start
2023-08-21T15:40:54.505Z box:locker Lock unreleased platform_start
2023-08-21T15:45:54.529Z box:locker Lock unreleased platform_start
2023-08-21T15:50:54.551Z box:locker Lock unreleased platform_start
2023-08-21T15:55:54.572Z box:locker Lock unreleased platform_start
2023-08-21T16:00:54.598Z box:locker Lock unreleased platform_start

2023-08-21T13:51:01.389Z box:sftp start: re-creating container
2023-08-21T13:51:01.405Z box:sftp ensureSecrets: generating new sftp keys of type rsa
2023-08-21T13:51:02.346Z box:sftp ensureSecrets: generating new sftp keys of type ed25519
2023-08-21T13:51:02.377Z box:shell stopSftp exec: docker stop sftp || true
2023-08-21T13:51:02.411Z box:shell stopSftp (stdout): null
2023-08-21T13:51:02.411Z box:shell stopSftp (stderr): Error response from daemon: No such container: sftp

2023-08-21T13:51:02.411Z box:shell removeSftp exec: docker rm -f sftp || true
2023-08-21T13:51:02.445Z box:shell removeSftp (stdout): null
2023-08-21T13:51:02.445Z box:shell removeSftp (stderr): Error response from daemon: No such container: sftp

2023-08-21T13:51:02.445Z box:shell startSftp exec: docker run --restart=always -d --name="sftp"                 --hostname sftp                 --net cloudron                 --net-alias sftp                 --log-driver syslog                 --log-opt syslog-address=udp://127.0.0.1:2514                 --log-opt syslog-format=rfc5424                 --log-opt tag=sftp                 -m 134217728                 --memory-swap 268435456                 --dns 172.18.0.1                 --dns-search=.                 -p 222:22                 -v "/home/yellowtent/appsdata:/mnt/appsdata" -v "/mnt/volumes:/mnt/volumes" -v "/home/yellowtent/boxdata/mail:/mnt/maildata"                 -e CLOUDRON_SFTP_TOKEN="a33faa9cd5a9ed132650294243ab4d851e23fc499b3d3001027735a8ddae20bdb6ddb63e1e2e38d30292235141c52285b3aabbedc099f01662b09d5b274b96685c0e40307ff331a43442ab1abfd681d7f79420fe19c506c24b865f1cb5b913dff133fa02eeb8882eb0473ccd62d97eb988fce3d95285b441e9dfd2d54a611cc7"                 -v "/home/yellowtent/platformdata/sftp/ssh:/etc/ssh:ro"                 --label isCloudronManaged=true                 --read-only -v /tmp -v /run "cloudron/sftp:3.7.2@sha256:a6f81d4dbbb90f6d57d30722f860d431cdba67c3500fb327878d29c6bb6357d2" 
2023-08-21T14:30:52.460Z box:server ==========================================
2023-08-21T14:30:52.461Z box:server            Cloudron 7.5.0  
2023-08-21T14:30:52.461Z box:server ==========================================
2023-08-21T14:30:52.649Z box:settings initCache: pre-load settings
2023-08-21T14:30:52.813Z box:tasks stopAllTasks: stopping all tasks
2023-08-21T14:30:52.814Z box:shell stopTask spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/stoptask.sh all
2023-08-21T14:30:53.005Z box:shell stopTask (stdout): All tasks stopped

2023-08-21T14:30:53.011Z box:reverseproxy writeDashboardConfig: writing admin config for pppfz.top
2023-08-21T14:30:53.085Z box:shell reload spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/restartservice.sh nginx
2023-08-21T14:30:53.202Z box:cloudron onActivated: running post activation tasks
2023-08-21T14:30:53.215Z box:platform initializing platform
2023-08-21T14:30:53.216Z box:platform Updating infrastructure from corrupt to 49.4.0
2023-08-21T14:30:53.216Z box:locker Acquired : platform_start
2023-08-21T14:30:53.216Z box:platform removeAllContainers: removing all containers for infra upgrade
2023-08-21T14:30:53.216Z box:shell removeAllContainers exec: docker ps -qa --filter 'label=isCloudronManaged' | xargs --no-run-if-empty docker stop
2023-08-21T14:31:12.745Z box:shell removeAllContainers (stdout): b12acc24c595
ceacf9388ae9
fc8108acd658
1f70a9af0079
23cb432c9174
42c80920622a
5e13a2cfa75f

2023-08-21T14:31:12.745Z box:shell removeAllContainers (stderr): null
2023-08-21T14:31:12.745Z box:shell removeAllContainers exec: docker ps -qa --filter 'label=isCloudronManaged' | xargs --no-run-if-empty docker rm -f
2023-08-21T14:31:12.846Z box:shell removeAllContainers (stdout): b12acc24c595
ceacf9388ae9
fc8108acd658
1f70a9af0079
23cb432c9174
42c80920622a
5e13a2cfa75f

2023-08-21T14:31:12.846Z box:shell removeAllContainers (stderr): null
2023-08-21T14:31:12.847Z box:platform createDockerNetwork: recreating docker network
2023-08-21T14:31:12.847Z box:shell createDockerNetwork exec: docker network rm cloudron || true
2023-08-21T14:31:13.183Z box:shell createDockerNetwork (stdout): cloudron

2023-08-21T14:31:13.183Z box:shell createDockerNetwork (stderr): null
2023-08-21T14:31:13.183Z box:shell createDockerNetwork exec: docker network create --subnet=172.18.0.0/16 --ip-range=172.18.0.0/20 --gateway 172.18.0.1 --ipv6 --subnet=fd00:c107:d509::/64 cloudron
2023-08-21T14:31:13.329Z box:shell createDockerNetwork (stdout): 8cb3c6152f2aac0dd28a374555d05994942edc87ae1c984afe2a9996a9da27b7

2023-08-21T14:31:13.329Z box:shell createDockerNetwork (stderr): null
2023-08-21T14:31:13.329Z box:platform markApps: reconfiguring installed apps
2023-08-21T14:31:13.329Z box:reverseproxy removeAppConfigs: removing app nginx configs
2023-08-21T14:31:13.359Z box:services startServices: corrupt -> 49.4.0. starting all services
2023-08-21T14:31:13.359Z box:mail startMail: starting
2023-08-21T14:31:13.360Z box:mail restartMail: restarting mail container with mailFqdn:my.pppfz.top mailDomain:pppfz.top
2023-08-21T14:31:13.380Z box:shell stopMail exec: docker stop mail || true
2023-08-21T14:31:13.402Z box:shell stopMail (stdout): null
2023-08-21T14:31:13.402Z box:shell stopMail (stderr): Error response from daemon: No such container: mail

2023-08-21T14:31:13.402Z box:shell removeMail exec: docker rm -f mail || true
2023-08-21T14:31:13.438Z box:shell removeMail (stdout): null
2023-08-21T14:31:13.439Z box:shell removeMail (stderr): Error response from daemon: No such container: mail

2023-08-21T14:31:13.439Z box:mail createMailConfig: generating mail config with my.pppfz.top
2023-08-21T14:31:13.446Z box:shell startMail exec: docker run --restart=always -d --name="mail"                 --net cloudron                 --net-alias mail                 --log-driver syslog                 --log-opt syslog-address=udp://127.0.0.1:2514                 --log-opt syslog-format=rfc5424                 --log-opt tag=mail                 -m 268435456                 --memory-swap 536870912                 --dns 172.18.0.1                 --dns-search=.                 -e CLOUDRON_MAIL_TOKEN="cf2efa6e3a4d888d88ec180fef841c0cea91e91ba8c2d46516ca1d37d312ed54e474137fa83f774e782d9fb3e91111b2c8bb81906133aef0bac119a0e63f0fc6bc16e3d7e8b7b46cd4dd758a9a571d3de6c6b4db54d1bfcacd5685a41a1428799cd29c9cba3a49818bff9734521b0b7751261f8cc76c561909ac7dc54e7b34c6"                 -e CLOUDRON_RELAY_TOKEN="02e8a4cd3c1097f2f13f664bbc27e22e47994425b1ab9296869e50b63e867841ae6b4bfa46e587e067e0d329e55d10e2b9d6300d58a7725cbc474681435da8550997b69fd5628ee0a2c2cb1abfaca4b15a69d6330bca6e7fbbb6d4c2a5d1f861250a696704e8a3dbfd9b92337db4875b6ffadd858bdbc16d452f4f519c0d9f5d"                 -e LOGLEVEL=info                 -v "/home/yellowtent/boxdata/mail:/app/data"                 -v "/home/yellowtent/platformdata/addons/mail:/etc/mail:ro"                                  --label isCloudronManaged=true                 --read-only -v /run -v /tmp cloudron/mail:3.8.6@sha256:c88fc3502828dc3c15f39b10e2b949a447a682a686854ac358a8983ac0999ed3 
2023-08-21T14:31:14.118Z box:shell startMail (stdout): 5b16ad8090a1dbdc19248cb47c5e3354582e67d3d48b591fa03082a217431c12

2023-08-21T14:31:14.119Z box:shell startMail (stderr): null
2023-08-21T14:31:14.131Z box:shell stopTurn exec: docker stop turn || true
2023-08-21T14:31:14.165Z box:shell stopTurn (stdout): null
2023-08-21T14:31:14.165Z box:shell stopTurn (stderr): Error response from daemon: No such container: turn

2023-08-21T14:31:14.165Z box:shell removeTurn exec: docker rm -f turn || true
2023-08-21T14:31:14.198Z box:shell removeTurn (stdout): null
2023-08-21T14:31:14.198Z box:shell removeTurn (stderr): Error response from daemon: No such container: turn

2023-08-21T14:31:14.198Z box:shell startTurn exec: docker run --restart=always -d --name="turn"                 --hostname turn                 --net host                 --log-driver syslog                 --log-opt syslog-address=udp://127.0.0.1:2514                 --log-opt syslog-format=rfc5424                 --log-opt tag=turn                 -m 134217728                 --memory-swap 268435456                 --dns 172.18.0.1                 --dns-search=.                 -e CLOUDRON_TURN_SECRET="aa39d2454aa6b881e451c8ad0a6d0da"                 -e CLOUDRON_REALM="my.pppfz.top"                 --label isCloudronManaged=true                 --read-only -v /tmp -v /run "cloudron/turn:1.5.0@sha256:c59a6da9ea55073ede1ba6329739fca72eddf64c3a3c10280bcc5b7fb8197865" 
2023-08-21T14:31:14.472Z box:shell startTurn (stdout): 00e6e772a9d91f2348f748f1821480d4e379e8ca305f66f50d432e2867073e4c

2023-08-21T14:31:14.472Z box:shell startTurn (stderr): null
2023-08-21T14:31:14.477Z box:platform Failed to start services. retry=false (attempt 0): Cannot read properties of undefined (reading 'mysql')
2023-08-21T14:31:14.477Z box:cloudron Startup task at index 2 failed: Cannot read properties of undefined (reading 'mysql') TypeError: Cannot read properties of undefined (reading 'mysql')
    at startMysql (/home/yellowtent/box/src/services.js:1121:96)
    at Object.startServices (/home/yellowtent/box/src/services.js:803:15)
    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
    at async Object.start (/home/yellowtent/box/src/platform.js:68:13)
    at async onActivated (/home/yellowtent/box/src/cloudron.js:81:5)
    at async Array.<anonymous> (/home/yellowtent/box/src/cloudron.js:133:9)
2023-08-21T14:35:54.208Z box:locker Lock unreleased platform_start
2023-08-21T14:40:54.238Z box:locker Lock unreleased platform_start
2023-08-21T14:45:54.265Z box:locker Lock unreleased platform_start
Box GET /api/sonicos/auth 404   10.340 ms - 155
Box GET /api/sonicos/tfa 404   6.013 ms - 154

nebulon

Have you gone through https://docs.cloudron.io/domains/#cloudflare-dns and also there are various related forum threads about this already, in case you have missed them. For a start try to disable proxying to rule out some potential areas of issues.

girish

It seems the box code is not starting up. That's most likely the source of the issue. Are you able to contact us on support@cloudron.io ? It's not clear from the logs why it's not starting up.

pppfz

一、Reply

@nebulon said in 525 SSL handshake failed error from cloudflare:

您是否浏览过https://docs.cloudron.io/domains/#cloudflare-dns并且已经有各种相关的论坛主题，以防您错过它们。首先尝试禁用代理以排除一些潜在的问题。

Is that what you mean？

• try to close it
  

But when I did it, it still didn't work. This is the certificate information he returned.

This is the program information that I am running in the background

root@VM-0-4-ubuntu:/home/ubuntu# ps -ef
UID          PID    PPID  C STIME TTY          TIME CMD
root           1       0  0 Aug21 ?        00:00:04 /sbin/init
root           2       0  0 Aug21 ?        00:00:00 [kthreadd]
root           3       2  0 Aug21 ?        00:00:00 [rcu_gp]
root           4       2  0 Aug21 ?        00:00:00 [rcu_par_gp]
root           5       2  0 Aug21 ?        00:00:00 [slub_flushwq]
root           6       2  0 Aug21 ?        00:00:00 [netns]
root           8       2  0 Aug21 ?        00:00:00 [kworker/0:0H-events_highpri]
root          10       2  0 Aug21 ?        00:00:00 [mm_percpu_wq]
root          11       2  0 Aug21 ?        00:00:00 [rcu_tasks_rude_]
root          12       2  0 Aug21 ?        00:00:00 [rcu_tasks_trace]
root          13       2  0 Aug21 ?        00:00:00 [ksoftirqd/0]
root          14       2  0 Aug21 ?        00:00:14 [rcu_sched]
root          15       2  0 Aug21 ?        00:00:00 [migration/0]
root          16       2  0 Aug21 ?        00:00:00 [idle_inject/0]
root          18       2  0 Aug21 ?        00:00:00 [cpuhp/0]
root          19       2  0 Aug21 ?        00:00:00 [cpuhp/1]
root          20       2  0 Aug21 ?        00:00:00 [idle_inject/1]
root          21       2  0 Aug21 ?        00:00:00 [migration/1]
root          22       2  0 Aug21 ?        00:00:00 [ksoftirqd/1]
root          24       2  0 Aug21 ?        00:00:00 [kworker/1:0H-events_highpri]
root          25       2  0 Aug21 ?        00:00:00 [kdevtmpfs]
root          26       2  0 Aug21 ?        00:00:00 [inet_frag_wq]
root          27       2  0 Aug21 ?        00:00:00 [kauditd]
root          28       2  0 Aug21 ?        00:00:00 [khungtaskd]
root          29       2  0 Aug21 ?        00:00:00 [oom_reaper]
root          30       2  0 Aug21 ?        00:00:00 [writeback]
root          31       2  0 Aug21 ?        00:00:02 [kcompactd0]
root          32       2  0 Aug21 ?        00:00:00 [ksmd]
root          80       2  0 Aug21 ?        00:00:00 [kintegrityd]
root          81       2  0 Aug21 ?        00:00:00 [kblockd]
root          82       2  0 Aug21 ?        00:00:00 [blkcg_punt_bio]
root          83       2  0 Aug21 ?        00:00:00 [tpm_dev_wq]
root          84       2  0 Aug21 ?        00:00:00 [ata_sff]
root          85       2  0 Aug21 ?        00:00:00 [md]
root          86       2  0 Aug21 ?        00:00:00 [edac-poller]
root          87       2  0 Aug21 ?        00:00:00 [devfreq_wq]
root          88       2  0 Aug21 ?        00:00:00 [watchdogd]
root          90       2  0 Aug21 ?        00:00:00 [kworker/0:1H-kblockd]
root          93       2  0 Aug21 ?        00:00:00 [kswapd0]
root          94       2  0 Aug21 ?        00:00:00 [ecryptfs-kthrea]
root          96       2  0 Aug21 ?        00:00:00 [kthrotld]
root          97       2  0 Aug21 ?        00:00:00 [acpi_thermal_pm]
root          99       2  0 Aug21 ?        00:00:00 [scsi_eh_0]
root         100       2  0 Aug21 ?        00:00:00 [scsi_tmf_0]
root         101       2  0 Aug21 ?        00:00:00 [scsi_eh_1]
root         102       2  0 Aug21 ?        00:00:00 [scsi_tmf_1]
root         104       2  0 Aug21 ?        00:00:00 [vfio-irqfd-clea]
root         105       2  0 Aug21 ?        00:00:00 [mld]
root         106       2  0 Aug21 ?        00:00:00 [ipv6_addrconf]
root         117       2  0 Aug21 ?        00:00:00 [kstrp]
root         120       2  0 Aug21 ?        00:00:00 [zswap-shrink]
root         121       2  0 Aug21 ?        00:00:00 [kworker/u5:0]
root         126       2  0 Aug21 ?        00:00:00 [charger_manager]
root         166       2  0 Aug21 ?        00:00:01 [kworker/1:1H-kblockd]
root         184       2  0 Aug21 ?        00:00:00 [cryptd]
root         235       2  0 Aug21 ?        00:00:00 [raid5wq]
root         285       2  0 Aug21 ?        00:00:02 [jbd2/vda2-8]
root         286       2  0 Aug21 ?        00:00:00 [ext4-rsv-conver]
root         363       1  0 Aug21 ?        00:00:03 /lib/systemd/systemd-journald
root         406       1  0 Aug21 ?        00:00:00 /lib/systemd/systemd-udevd
root         407       2  0 Aug21 ?        00:00:00 [kaluad]
root         408       2  0 Aug21 ?        00:00:00 [kmpath_rdacd]
root         409       2  0 Aug21 ?        00:00:00 [kmpathd]
root         410       2  0 Aug21 ?        00:00:00 [kmpath_handlerd]
root         411       1  0 Aug21 ?        00:00:04 /sbin/multipathd -d -s
_rpc         464       1  0 Aug21 ?        00:00:00 /sbin/rpcbind -f -w
systemd+     465       1  0 Aug21 ?        00:00:00 /lib/systemd/systemd-timesyncd
root         467       2  0 Aug21 ?        00:00:00 [rpciod]
root         468       2  0 Aug21 ?        00:00:00 [xprtiod]
systemd+     816       1  0 Aug21 ?        00:00:00 /lib/systemd/systemd-networkd
root         832       1  0 Aug21 ?        00:00:00 /usr/sbin/acpid
yellowt+     837       1  0 Aug21 ?        00:00:00 node /home/yellowtent/box/syslog/service.js
root         839       1  0 Aug21 ?        00:00:00 /usr/sbin/cron -f -P
message+     840       1  0 Aug21 ?        00:00:00 @dbus-daemon --system --address=systemd: --no
root         852       1  0 Aug21 ?        00:00:00 /usr/bin/python3 /usr/bin/networkd-dispatcher
root         853       1  0 Aug21 ?        00:00:00 /usr/libexec/polkitd --no-debug
syslog       855       1  0 Aug21 ?        00:00:00 /usr/sbin/rsyslogd -n -iNONE
root         858       1  0 Aug21 ?        00:00:00 /lib/systemd/systemd-logind
root         863       1  0 Aug21 ?        00:00:00 /usr/libexec/udisks2/udisksd
unbound      864       1  0 Aug21 ?        00:00:03 /usr/sbin/unbound -d
root         872       1  0 Aug21 ?        00:00:11 /usr/local/qcloud/tat_agent/tat_agent
root         873       1  0 Aug21 ?        00:00:43 /usr/bin/containerd
root         914       1  0 Aug21 ?        00:00:11 /usr/sbin/collectd
root         927       1  0 Aug21 ?        00:00:00 /usr/sbin/ModemManager
root         968       1  0 Aug21 ?        00:00:00 sshd: /usr/sbin/sshd -D [listener] 0 of 10-10
root        1019       1  0 Aug21 ?        00:00:00 /usr/bin/python3 /usr/share/unattended-upgrad
mysql       1058       1  0 Aug21 ?        00:03:26 /usr/sbin/mysqld
root        1127       1  0 Aug21 ?        00:00:49 /usr/bin/dockerd -H fd:// --log-driver=journa
root        1267       1  0 Aug21 ttyS0    00:00:00 /sbin/agetty -o -p -- \u --keep-baud 115200,5
root        1270       1  0 Aug21 tty1     00:00:00 /sbin/agetty -o -p -- \u --noclear tty1 linux
root        1311       1  0 Aug21 ?        00:00:00 nginx: master process /usr/sbin/nginx -g daem
yellowt+    1314       1  0 Aug21 ?        00:00:02 node /home/yellowtent/box/box.js
www-data    1671    1311  0 Aug21 ?        00:00:00 nginx: worker process
www-data    1672    1311  0 Aug21 ?        00:00:00 nginx: worker process
root        3677       1  0 Aug21 ?        00:00:15 /usr/bin/containerd-shim-runc-v2 -namespace m
root        3697    3677  0 Aug21 ?        00:00:14 /usr/bin/python3 /usr/bin/supervisord --confi
root        3839       1  0 Aug21 ?        00:00:15 /usr/bin/containerd-shim-runc-v2 -namespace m
sshd        3859    3839  0 Aug21 ?        00:00:16 /usr/bin/turnserver -c /run/turnserver/turnse
root        3881       1  0 Aug21 ?        00:00:18 /usr/local/qcloud/YunJing/YDLive/YDLive
root        3894    3697  0 Aug21 ?        00:00:00 /usr/sbin/dovecot -c /run/dovecot.conf -F
ubuntu      3895    3697  0 Aug21 ?        00:00:07 node /app/code/haraka/bin/haraka -c /run/hara
ubuntu      3896    3697  0 Aug21 ?        00:00:00 node /app/code/service.js
systemd+    3897    3697  0 Aug21 ?        00:01:29 /usr/bin/redis-server *:6379
ubuntu      3898    3697  0 Aug21 ?        00:00:09 /usr/bin/perl -T -w /usr/sbin/spamd --max-chi
sshd        3915    3894  0 Aug21 ?        00:00:00 dovecot/anvil
root        3916    3894  0 Aug21 ?        00:00:00 dovecot/log
root        3918    3894  0 Aug21 ?        00:00:00 dovecot/config
ubuntu      3929    3898  0 Aug21 ?        00:00:00 spamd child
ubuntu      3930    3898  0 Aug21 ?        00:00:00 spamd child
root        3983    3881  0 Aug21 ?        00:08:42 /usr/local/qcloud/YunJing/YDEyes/YDService
root        4055    3983  0 Aug21 ?        00:00:12 /bin/sh -c sleep 100
root       31849       1  0 Aug21 ?        00:00:00 /usr/libexec/upowerd
root       31874       1  0 Aug21 ?        00:00:02 /usr/lib/snapd/snapd
root       32457       1  0 Aug21 ?        00:00:00 /usr/libexec/packagekitd
root       59091       2  0 06:28 ?        00:00:02 [kworker/1:0-events]
root       64693       2  0 08:04 ?        00:00:01 [kworker/0:0-mm_percpu_wq]
root       71510       2  0 09:57 ?        00:00:00 [kworker/u4:3-flush-252:0]
root       72294       2  0 10:11 ?        00:00:00 [kworker/1:2-events]
root       76447       2  0 11:25 ?        00:00:00 [kworker/u4:2-events_unbound]
root       77351       2  0 11:41 ?        00:00:00 [kworker/u4:1-events_unbound]
root       78007       1  0 11:53 ?        00:00:00 /usr/libexec/fwupd/fwupd
root       78095       2  0 11:54 ?        00:00:00 [kworker/0:1]
root       79101       2  0 12:12 ?        00:00:00 [kworker/u4:0-events_power_efficient]
root       79278     968  0 12:15 ?        00:00:00 sshd: ubuntu [priv]
ubuntu     79281       1  0 12:15 ?        00:00:00 /lib/systemd/systemd --user
ubuntu     79282   79281  0 12:15 ?        00:00:00 (sd-pam)
root       79287       2  0 12:15 ?        00:00:00 [kworker/1:1]
ubuntu     79360   79278  0 12:15 ?        00:00:00 sshd: ubuntu@pts/0
ubuntu     79361   79360  0 12:15 pts/0    00:00:00 -bash
root       79410       1  0 12:16 ?        00:00:00 /usr/local/qcloud/stargate/bin/sgagent -d
root       79535   79361  0 12:18 pts/0    00:00:00 sudo su
root       79536   79535  0 12:18 pts/1    00:00:00 sudo su
root       79537   79536  0 12:18 pts/1    00:00:00 su
root       79538   79537  0 12:18 pts/1    00:00:00 bash
root       79544   79538  0 12:18 pts/1    00:00:00 ps -ef

Where should I check to make sure my certificate is properly handshaked?

girish

@pppfz For a start, I would try without Cloudflare proxying. Does it work without Cloudflare proxying ?

pppfz

I don't know about this, because our Chinese region needs to file for the website, and I haven't filed yet, so I can't access it. I'm guessing the proxy should be accessible if not applicable, it should just be a matter of the certificate handshake. Actually I want to try, can you guide me how to change cloudron's certificate file to match cloudflare's handshake. If it is not possible, I will consider installing it on a server in another area.

nebulon

What does "filing for the website" mean in this context? If Cloudflare for some reason is hard in China, maybe you can move the domain nameservers also to some other DNS provider? (You should be able to keep the current domain registrar and just set nameservers. Digitalocean has free DNS support for example)

pppfz

Thank you for your help. Website filing is to register the services provided by this server to improve network security. When I tried to use servers in other countries, it was very successful, thank you for your help, and wish you success in your work!