Cloudflare's mission is to help build a better Internet. We're excited today to take another step toward that mission with the launch of 1.1.1.1 — the Internet's fastest, privacy-first consumer DNS service. This post will talk a little about what that is and a lot about why we decided to do it. Find the latest Cloudflare news from WIRED. See related science and technology articles, photos, slideshows and videos.
105.83 (2019)WebsiteCloudflare, Inc. Is an American web-infrastructure and website-security company, providing services, and distributed services. Cloudflare's services sit between a website's visitor and the Cloudflare user's hosting provider, acting as a for websites. Cloudflare's headquarters are in, California, with additional offices in, andCloudflare has faced several controversies over its unwillingness to monitor content distributed via its network —a stance it has defended based on the principle of. Cloudflare stated that it will 'continue to abide by the law' and 'serve all customers', further explaining 'our proper role is not that of Internet censor'. These controversies have involved Cloudflare's service of, a commentary and message board website; and, an which has been linked to multiple and the in.
In 2017, Cloudflare decided to cease providing services to The Daily Stormer. In August 2019, Cloudflare stopped services for 8chan following a stating that 8chan is 'refusing to moderate their hate-filled community'.In 2014, Cloudflare introduced an effort called Project Galileo in response to cyberattacks against vulnerable online targets, such as artists, activists, journalists, and human rights groups. Project Galileo provides such groups with free services to protect their websites. In 2019, Cloudflare announced that 600 users and organizations were participating in the project. Contents.History Cloudflare was created in 2009 by Matthew Prince, Lee Holloway, and Michelle Zatlyn, who had previously worked on. Cloudflare was launched at the September 2010 conference.
It received media attention in June 2011 for providing security services to the website of, a group.In June 2012, Cloudflare partnered with various web hosts, including, to implement its 'Railgun' technology: a web protocol intended to improve performance.In February 2014, Cloudflare mitigated what was at the time the largest ever recorded DDoS attack, which peaked at 400 per second against an undisclosed customer. In November 2014, Cloudflare reported another massive DDoS attack with independent media sites being targeted at 500 Gbit/s.As of 2017, Cloudflare provides DNS services to 12 million websites, adding approximately 20,000 new customers every day. According to W3Techs, Cloudflare is the most popular reverse proxy service, used by 11.6% of the top 10 million websites.
Funding rounds In November 2009, Cloudflare raised $2.1 million in a from Pelion Venture Partners. In July 2011, Cloudflare raised $20 million in a Series B round from, Pelion Venture Partners, Venrock. In December 2012, Cloudflare raised $50 million in a Series C round from New Enterprise Associates, Pelion Venture Partners, Venrock,. In December 2014, Cloudflare raised $110 million in a Series D round led by, with participation from,. In March 2019, Cloudflare raised $150 million in a Series E round led by, with participation from New Enterprise Associates, Union Square Ventures, Venrock, Pelion Venture Partners, Greenspring Associates, CapitalG, Microsoft, Baidu, Qualcomm and Fidelity.On August 15, 2019, Cloudflare submitted its filing for IPO on the under the stock ticker NET. It opened for public trading on September 13, 2019, priced at $15 per share.
Acquisitions In February 2014, Cloudflare acquired StopTheHacker, which offers detection, automatic malware removal, and reputation and blacklist monitoring. In December 2016, Cloudflare acquired Eager, with the view of upgrading Cloudflare's Apps platform to allow for drag-and-drop installation of third-party apps onto Cloudflare-enabled sites.
In late 2017, Cloudflare acquired Neumob, a mobile startup. Services. This section may be and excessively detailed. Please consider summarizing the material while as needed. ( August 2019)DDoS protection Cloudflare offers an 'I'm Under Attack' mode for customers experiencing cyberattacks.
Cloudflare claims this can mitigate advanced by presenting a computational challenge which must be completed by a user's browser before the user can access a website.In March 2013, Cloudflare defended from a DDoS attack that exceeded 300 Gbit/s. Chief architect stated that at the time it was 'the largest publicly announced DDoS attack in the history of the Internet'. Cloudflare has also reportedly absorbed attacks that have peaked over 400Gbit/s from an.
Web application firewall Cloudflare allows customers on paid plans to utilize a service. By default, the firewall has the Core Rule Set alongside Cloudflare's own ruleset and rulesets for popular web applications. Authoritative DNS Cloudflare offers free (DNS) service for all clients, which is powered by an network.
SolveDNS have found Cloudflare to consistently have one of the fastest DNS lookup speeds worldwide, with a reported lookup speed of 5.6ms in July 2019. Public DNS resolver.
Main article:On April 1, 2018, Cloudflare announced a 'privacy-first' consumer DNS service, at IP addresses 1.1.1.1 and 1.0.0.1. Alternatively, the service can be accessed via IPv6 at 2606:4700:4700::1111 and 2606:4700:4700::1001.On August 16, 2018, Cloudflare announced 1.1.1.1 can be used on Android Pie's Private DNS feature using '1dot1dot1dot1.cloudflare-dns.com' hostname.
On November 11, 2018, Cloudflare announced a mobile version of their 1.1.1.1 service for iOS and Android. Reverse proxy A key functionality of Cloudflare is that they act as a for web traffic.
Cloudflare supports new web protocols, including. In addition to this, Cloudflare offers support for. Cloudflare also supports proxying. Content delivery network Cloudflare's network has the highest number of connections to of any network worldwide. Cloudflare caches content to its edge locations to act as a (CDN); all requests are then reverse proxied through Cloudflare with cached content served directly from Cloudflare. Project Galileo In 2014, Cloudflare introduced an effort called Project Galileo in response to cyberattacks against vulnerable online targets, such as artists, activists, journalists, and human rights groups. Project Galileo provides such groups with free services to protect their websites.
Cloudflare has remained fairly secretive about the project, in part to avoid drawing further attention to organizations that might be targeted. In 2019, Cloudflare announced that 600 users and organizations were participating in the project.Project Galileo has been compared to, a different service providing protection to vulnerable humanitarian and free-speech groups.
In contrast to Project Shield, Project Galileo does not create its own guidelines for eligible users, but rather outsources the selection to 28 non-profit organizations, any of which can accept users into the program. Project Athenian Cloudflare created Project Athenian to ensure that state and local government election websites receive their highest level of protection and reliability for free, so that their constituents always have access to election information and voter registration. Domain registrar In 2019, Cloudflare announced a new service that promised to offer low-cost wholesale pricing and easy ways to enable. Access In 2018, Cloudflare announced a new authentication service that offers a way for companies to secure networks without the overhead of a. The service is free for up to 5 users and then is $3 per user per month. The service allows administrators to authenticate clients with a, Provider,. Warp On April 1, 2019, Cloudflare announced a new freemium service named Warp.
The service would initially be available through the 1.1.1.1 mobile apps with a desktop app available later.On September 25, 2019, Cloudflare released Warp to the public.Currently as a freemium service, Warp has two plans Warp and Warp+. Warp Plus is faster than Warp and uses Cloudflare’s Argo Smart Routing to achieve a higher speed than Warp. Warp is free while Warp+ starts at $4.99 per month or €3.99 per month in Europe.Network time services On June 21, 2019, Cloudflare announced that users would be able to sync their computer's time securely with Cloudflare's (NTP) service. Cloudflare's time service will allow users to connect to their NTP server that supports Network Time Security (NTS), enabling users to obtain time in an authenticated manner.On October 31, 2019 Cloudflare further announced that they release their NTS implementation, cfnts, as open source software and invited the internet community to contribute to its future development. Controversy Cloudflare has come under pressure on multiple occasions due to its policies on free speech and for refusing to cease technical support (such as DNS routing and DDoS mitigation) of websites such as,. Some have argued Cloudflare's services allow access to content which spreads hate and has led to harm and deaths. However Cloudflare, as an Internet infrastructure provider, has broad legal immunity from the content produced by its users.In 2011, Cloudflare provided DoS protection for the hacker group LulzSec.
This garnered significant positive media attention at the time, as Cloudflare was a young and relatively unknown company.Cloudflare provided DNS routing and DoS protection for the white supremacist and neo-Nazi website, The Daily Stormer. In 2017 Cloudflare stopped providing their services to The Daily Stormer after an announcement on the controversial website asserted that the 'upper-echelons' of Cloudflare were 'secretly supporters of their ideology'. Previously Cloudflare had refused to take any action regarding The Daily Stormer, despite widespread public pressure. The removal was addressed in a blog post in which Cloudflare emphasized their dedication towards freedom of speech. As a self-described 'free speech absolutist', Cloudflare's CEO Matthew Prince vowed never to succumb to external pressure again and sought to create a 'political umbrella' for the future.
Prince further addressed the dangers of large companies deciding what is allowed to stay online, a concern that is shared by a number of civil liberties groups and privacy experts. Digital rights group, said that services such as Cloudflare 'should not be adjudicating what speech is acceptable', adding that 'when illegal activity, like inciting violence or defamation, occurs, the proper channel to deal with it is the legal system.'
After terminating service for The Daily Stormer, Cloudflare sought to create an alliance of free speech organizations so the company could stand up to pressure in the future. A number of organizations, including The Electronic Frontier Foundation, joined a Cloudflare project called Project Galileo to support their free speech stance.According to, Cloudflare provides services to 'at least 7 terrorist groups', as designated by the. According to the article, Cloudflare provides services to the, the, and other terrorist groups, have been aware since at least 2012, and have taken no action.
According to Cloudflare's CEO, no law enforcement agency has asked the company to discontinue these services.In 2019, Cloudflare was criticized for providing services to the discussion and imageboard 8chan, which allows users to post and discuss any content with minimal interference from site administrators. The message board has been linked to mass shootings in the United States and the Christchurch mosque shootings in New Zealand. In addition, a number of news organizations including and have reported the existence of and discussion boards. A Cloudflare representative has been quoted by the BBC saying that the platform 'does not host the referenced websites, cannot block websites, and is not in the business of hiding companies that host illegal content'. In an August 3 interview with, immediately following the 2019 El Paso shooting, CEO Matthew Prince defended Cloudflare's support of 8chan, saying:What happened in El Paso today is abhorrent in every possible way, and it’s ugly, and I hate that there’s any association between us and that For us the question is which is the worse evil? Is the worse evil that we kick the can down the road and don’t take responsibility?
Or do we get on the phone with people like you and say we need to own up to the fact that the internet is home to many amazing things and many terrible things and we have an absolute moral obligation to deal with that.Two days later, Cloudflare announced that they were terminating support for 8chan due to the consistent use of the site for terror purposes. In the announcement, CEO Matthew Prince said that he believed Cloudflare's refusal to provide services to 8chan would not permanently take the site offline, and compared the decision to the previous events with The Daily Stormer:Unfortunately, we have seen this situation before and so we have a good sense of what will play out.
Almost exactly two years ago we made the determination to kick another disgusting site off Cloudflare's network: the Daily Stormer. That caused a brief interruption in the site's operations but they quickly came back online using a Cloudflare competitor. That competitor at the time promoted as a feature the fact that they didn't respond to legal process. Today, the Daily Stormer is still available and still disgusting. They have bragged that they have more readers than ever.
They are no longer Cloudflare's problem, but they remain the Internet's problem.8chan later moved to, though BitMitigate's decision to host the website resulted in their primary cloud infrastructure provider terminating services with the company.In April 2020 Cloudflare launched the DNS service '1.1.1.1 for Families', aimed at blocking malware and preventing children from seeing adult content. The service was criticized for denying access to LGBT resources and sex education websites. Cloudflare CEO Matthew Price promised an immediate fix. Content neutrality Cloudflare has been vocal about their stance on freedom of speech, with CEO Matthew Prince stating:One of the greatest strengths of the United States is a belief that speech, particularly political speech, is sacred. A website, of course, is nothing but speech. A website is speech.
It is not a bomb. There is no imminent danger it creates and no provider has an affirmative obligation to monitor and make determinations about the theoretically harmful nature of speech a site may contain.Cloudflare services have been used by, a website that sells stolen payment card data.Two of the top three online chat forums belonging to the (ISIL) are guarded by Cloudflare. According to Prince, U.S. Law enforcement has not asked Cloudflare to discontinue the service, and they have not chosen to do so themselves.In November 2015, group discouraged the use of Cloudflare's services following the ISIL and the renewed accusation that Cloudflare aids terrorists. Cloudflare responded by calling the group '15-year-old kids in ', and saying that whenever such concerns are raised they consult anti-terrorism experts and abide by the law.Breaking with its long-standing policy of total, Cloudflare ceased providing services to the neo-Nazi, white supremacist, and Holocaust denial commentary and message board website The Daily Stormer on August 16, 2017, in the aftermath of the four days earlier.
This dropped the website's protection against DDoS attacks, and soon thereafter attackers took down the website. Prince stated, 'I woke up this morning in a bad mood and decided to kick them off the internet,' and said that the tipping point in the decision was that 'the team behind Daily Stormer made the claim that we were secretly supporters of their ideology.'
, editor for The Daily Stormer, denied that his team made such a claim. The move to disconnect The Daily Stormer from Cloudflare services was criticized as dangerous by Prince himself and the Electronic Frontier Foundation.In August 2019, Cloudflare terminated services to, an American, after the perpetrator of the allegedly used the website to upload his manifesto.In late 2019, Cloudflare was again criticized for providing services to the anti-black website. Hundreds of thousands signed a petition on urging Prince to terminate services to Chimpmania.
The petition was created by the parents of a biracial baby who was born with and who was mocked as a “mulatto monkey baby” by site users, and whose pictures were posted on the site. Over the ten years the site has been active, numerous other petitions have also been leveled against it, none of which were successful.
Awards and recognition. Named the 'Most Innovative Network & Internet Technology Company' by the Wall Street Journal in 2011 and 2012. Recognized by the as a Technology Pioneer in 2012.
Ranked among the world's 10 most innovative companies by in 2012. Awarded 'Best Enterprise Startup' by at the 8th Annual Crunchies Awards in February 2015. Ranked #11 on the list in 2016 and 2017Security The hacker group attacked Cloudflare partially by exploiting flaws in authentication systems in June 2012, gaining administrative access to Cloudflare and using it to.
Cloudflare published in full the details of the hack. Following this, Google publicly announced they had patched the flaw in the Google Enterprise App account recovery process which had allowed the hackers to bypass.From September 2016 until February 2017, a major Cloudflare bug (nicknamed ) leaked sensitive data, including passwords and authentication tokens, from customer websites by sending extra data in response to web requests. The leaks resulted from a which occurred, according to analysis by Cloudflare, on approximately 1 in every 3,300,000 HTTP requests. Privacy Cloudflare publishes a transparency report on a semi-annual basis to show how often law enforcement agencies request data about its clients.In May 2017, reported that Cloudflare as a matter of policy relays the names and email addresses of persons complaining about hate sites to the sites in question, which has led to the complainants being harassed. Cloudflare's defended the company's policies by saying it is 'base constitutional law that people can face their accusers'.
In response to the report, Cloudflare updated their abuse reporting process to provide greater control over who is notified of the complaining party. Spam and phishing support Cloudflare is listed by, an international tracking organization, for providing spam support services. An October 2015 report found that Cloudflare provisioned 40% of used by sites with deceptive domain names resembling those of banks and payment processors. Finance.yahoo.com. Anicas, Mitchell (July 30, 2015).
Retrieved August 22, 2019. Swisher, Kara (December 17, 2013). Retrieved August 22, 2019. Schubarth, Cromwell (December 13, 2016). Retrieved August 22, 2019.
(Subscription required.). Graham-Cumming, John (July 17, 2019). The Cloudflare Blog. Retrieved August 22, 2019. ^ Wong, Julia Carrie (August 28, 2017).
Retrieved August 22, 2019. ^ Jones, Rhett (December 14, 2018). Retrieved August 5, 2019. ^ Sankin, Aaron (July 11, 2019).
Retrieved August 5, 2019. ^ Cook, Jesselyn (December 14, 2018). Retrieved August 5, 2019. ^ Captain, Sean (February 27, 2019). Retrieved August 5, 2019. Lee, Timothy B. (August 31, 2017).
Retrieved August 6, 2019. ^ Prince, Matthew (August 16, 2017). The Cloudflare Blog. Retrieved August 5, 2019. Kelly, Makena (August 4, 2019). From the original on August 5, 2019. Retrieved August 5, 2019.
^ Wong, Julia Carrie (August 4, 2019). Retrieved August 5, 2019. ^ Mezzofiore, Gianluca; O'Sullivan, Donie (August 5, 2019). Retrieved August 5, 2019. Prince, Matthew (August 5, 2019). The Cloudflare Blog.
From the original on August 5, 2019. Retrieved August 5, 2019. ^ Newman, Lily Hay (June 12, 2019). Retrieved August 5, 2019.
^ Henderson, Nicole (June 17, 2011). Webhost Industry Review.
Archived from on September 9, 2017. Retrieved August 21, 2019. ^. Retrieved August 22, 2019. Project Honey Pot. Archived from on December 4, 2017. Retrieved August 22, 2019.
^ Hesseldahl, Arik (June 10, 2011). Retrieved August 15, 2011. Clark, Jack (March 1, 2013). Retrieved October 8, 2015. Lardinois, Frederic (February 26, 2013). Retrieved February 12, 2016. Schwartz, Mathew J.
(February 11, 2014). Dark Reading. Retrieved August 22, 2019. Olson, Parmy (November 20, 2014). Retrieved August 22, 2019. Arnfeld, Tom (April 11, 2017). The Cloudflare Blog.
Retrieved August 22, 2019. Karaivanova, Maria (December 22, 2016). Interviewed by Jackie Goldstein. Retrieved August 22, 2019. January 28, 2020.
Retrieved January 28, 2020. ^. Retrieved August 22, 2019. Hesseldahl, Arik (July 12, 2011). Retrieved August 22, 2019.
Milian, Mark (December 18, 2012). Bloomblerg Technology. Retrieved August 22, 2019. Crook, Jordan (December 17, 2013). Retrieved August 22, 2019.
Hickins, Michael (December 17, 2013). Retrieved August 22, 2019. Miller, Ron (September 22, 2015). Retrieved August 22, 2019.
Kawamoto, Dawn (March 12, 2019). Retrieved March 12, 2019. (Subscription required.). Shieber, Jonathan (August 15, 2019).
Retrieved August 22, 2019. Loizos, Connie (September 13, 2019). Retrieved September 16, 2019. Lardinois, Frederic (February 24, 2014). Retrieved August 22, 2019.
Yeung, Ken (December 13, 2016). Retrieved December 28, 2016. Miller, Ron (November 14, 2017). From the original on December 3, 2018. Retrieved April 2, 2019., Holloway, Lee Hahn; Srikanth N. Rao & Matthew Browning Prince et al., 'Identifying a denial-of-service attack in a cloud-based proxy service', issued December 17, 2013. Storm, Darlene (March 27, 2013).
Retrieved August 22, 2019. Markoff, John; Perlroth, Nicole (March 26, 2013). Retrieved August 22, 2019. Gallagher, Sean (February 11, 2014).
Retrieved May 17, 2016. Kaushik, Mehul (April 6, 2017).
Fanatic Entrepreneur. Archived from on April 8, 2017. Retrieved August 22, 2019. Jackson, Brian (September 17, 2015). Retrieved May 17, 2016.
Retrieved August 22, 2019. Prince, Matthew (April 1, 2018).
The Cloudflare Blog. Retrieved August 22, 2019. Armasu, Lucian (April 2, 2018). Retrieved August 22, 2019. Cimpanu, Catalin (November 11, 2018).
Retrieved August 22, 2019. Osborne, Charlie (April 28, 2016). Retrieved May 17, 2016. Hurricane Electric Internet Services.
August 21, 2019. Retrieved June 1, 2016.
Masnick, Mike (June 14, 2019). Retrieved August 5, 2019. Walk, Erin (June 14, 2019). The Cloudflare Blog. Retrieved August 5, 2019. Walk, Erin (December 21, 2018). The Cloudflare Blog.
Retrieved August 5, 2019. Retrieved December 7, 2019. The Cloudflare Blog.
November 17, 2019. Retrieved December 7, 2019. Rambo, Guilherme (April 1, 2019).
From the original on April 2, 2019. Retrieved April 2, 2019. Prince, Matthew (April 1, 2020). Retrieved 2020-04-02. Humphries, By Matthew; September 26, 2019 10:18AM EST; September 26, 2019.
Retrieved September 27, 2019. Security, Paul Wagenseil 2019-09-26T20:13:55Z.
Retrieved September 27, 2019. Davis, Vincy (September 27, 2019). Retrieved December 7, 2019.
Retrieved August 22, 2019. Retrieved October 31, 2019.
^ Roose, Kevin (August 4, 2019). Retrieved August 5, 2019. ^ O'Neill, Patrick Howell (November 17, 2014). Retrieved August 5, 2019. ^ Machkovech, Sam (August 17, 2015). Retrieved August 5, 2019.
^ Lee, Timothy B. (December 4, 2017). Retrieved August 5, 2019. ^ Johnson, Steven (January 16, 2018).
Retrieved August 5, 2019. Citron, Danielle Keats (November 28, 2017). 282: 3–4 – via Cato.org. Keller, Daphne (August 15, 2017). The Center for Internet and Society.
Retrieved August 6, 2019. Shaban, Hamza (August 18, 2017). Retrieved August 6, 2019. Retrieved August 5, 2019.
^ Kohlmann, Evan F. (January 27, 2015). United States House of Representatives. Retrieved August 22, 2019. Dewey, Caitlin (January 13, 2015).
Retrieved August 22, 2019. October 22, 2019. Retrieved November 15, 2019.
^ Wong, Julia Carrie (August 3, 2019). Retrieved August 3, 2019.
Three attackers in six months allegedly posted their plans on the site in advance. In an exclusive interview, Silicon Valley CEO Matthew Prince explains his ‘moral obligation’ to keep 8chan online. ^ Prince, Matthew (August 5, 2019).
The Cloudflare Blog. Retrieved August 5, 2019. Robertson, Adi (August 5, 2019).
Retrieved August 22, 2019. at 19:31, Thomas Claburn in San Francisco 1 Apr 2020. Retrieved April 2, 2020. Dredge, Stuart (August 12, 2013). The Guardian. Yadron, Danny (September 29, 2014). Retrieved August 10, 2015.
Kovacs, Eduard (March 17, 2014). Retrieved August 10, 2015. Krebs, Brian (January 15, 2015).
Retrieved August 14, 2015. Hern, Alex (November 19, 2015). Retrieved November 19, 2015. Hackett, Robert (November 18, 2015). Retrieved August 22, 2019. Peterson, Becky (August 17, 2017). Retrieved August 17, 2017.
Ingram, David; Menn, Joseph (August 17, 2017). Retrieved August 17, 2017. Lee, Dave (August 17, 2017).
Retrieved August 17, 2017. Prince, Matthew (August 17, 2017). The Cloudflare Blog. Retrieved August 17, 2017. Brandom, Russell (August 16, 2017). Retrieved August 22, 2019. Malcolm, Jeremy; Cohn, Cindy; O'Brien, Danny (August 17, 2017).
Retrieved August 22, 2019. Wong, Julia Carrie (August 4, 2019). Retrieved August 22, 2019.
Cooper, Joel (November 11, 2019). Retrieved January 25, 2020. Wang, Shirley S.; Totty, Michael (October 17, 2011). Retrieved August 22, 2019. The Cloudflare Blog. October 15, 2012. Retrieved August 22, 2019.
Archived from on April 2, 2015. Retrieved March 10, 2015. February 10, 2012. Retrieved March 10, 2015. February 5, 2015.
Retrieved August 22, 2019. Archived from on April 29, 2017. Retrieved August 22, 2019. Archived from on September 3, 2018. Retrieved August 22, 2019. Simcoe, Luke (June 14, 2012). From the original on January 15, 2014.
Retrieved August 22, 2019. Ms. Smith (June 3, 2012). Privacy and Security Fanatic. Archived from on November 12, 2013.
Retrieved August 22, 2019. Prince, Matthew (June 4, 2012). The Cloudflare Blog.
Retrieved August 22, 2019. Conger, Kate (February 23, 2017). Retrieved August 22, 2019. Steinberg, Joseph (February 24, 2017). Retrieved February 24, 2017. Molina, Brett (February 28, 2017).
Retrieved March 1, 2017. Kovacs, Eduard (July 15, 2015). Wired Business Media. Retrieved August 22, 2019.
Schwencke, Ken (May 4, 2017). Retrieved May 6, 2017.
Prince, Matthew (May 7, 2017). The Cloudflare Blog. Retrieved August 22, 2019. Word to the Wise.
July 16, 2017. Retrieved February 28, 2017. Retrieved September 30, 2019. Edgecombe, Graham (October 12, 2015). Retrieved October 14, 2015. ^ Graham-Cumming, John (July 12, 2019). The Cloudflare Blog.
Retrieved July 12, 2019. July 2, 2019.
Retrieved July 2, 2019.External links. Business data for Cloudflare, Inc.
It looks like you're using Cloudflare's Origin CA service, nice!The issue looks like you've put your SSL private key in the sslclientcertificate attribute and not put your real SSL certificate in your configuration. Your Nginx SSL configuration should contain the following lines instead:sslcertificate /path/to/yourcertificate.pem;sslcertificatekey /path/to/yourkey.key;Make sure SSL Certificate corresponds to the.PEM file with the correct contents, and the Certificate Key file contains the.KEY file with the correct contents too.To generate a certificate with Origin CA, navigate to the Crypto section of the Cloudfalre dashboard. From there, click the Create Certificate button in the Origin Certificates section. Once you complete the steps in the wizard, you will see a window which allows you to download both the certificate file and the key file.
Make sure you put them in the correct files and install them on your web server.Further reading:.