Cloudflare error

submitted by [deleted] from (i.imgur.com)

all 16 comments
sorted by:
top
newinsightfulfun

[–]magnora7 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (15 children)

/u/d3rr I had the same 525 error as OP about 30 mins ago. It also then gave me a 524 error after a page refresh. Then the site loaded after another refresh.

524 error is a cloudflare thing. I wonder if there's a problem with letsencrypt or cloudflare, it's happened a couple times now in the last few hours apparently. Could be our servers too, maybe we should restart some things.

Thanks for the report muskrat

[–]magnora7 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (14 children)

/u/d3rr just got a 520 error, went away after a refresh. So many weird and random cloudflare errors the last couple days. Not sure if that is them or us

[–][deleted] 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (11 children)

I got one once too. I just checked the cloudflare ip list and it hasn't changed, we have them all in the firewall correctly. We've got to catch it happening which is damn hard for an intermittent error.

[–]magnora7 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (10 children)

I did some searches to see if other people are having the same cloudflare errors and I couldn't find anything, so I think it might be us. The only other thing we do with cloudflare is through those API bash scripts I wrote, that update the firewall list based on banned usernames and based on self-upvoting (sometimes). So maybe one of those scripts is getting overloaded somehow, or cloudflare changed their API or the API limitations and we're now hitting them whereas we weren't before. That's the only thing I can think of.

I say we try a full restart first, and if that doesn't remove the errors, then we can try turning off those script API services

[–][deleted] 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (1 child)

Happened to me earlier, while I waited for a response to 'save'. To check the site, I opened another Saidit tab and got the 525 error; waited half a minute, opened another tab and got the error, and I think it worked with the third or 4th tab - thus at least 3 of the 525 errors in 2 minutes. Seemed to be a traffic overload problem, 6 or 8 hours ago.

[–]magnora7 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (0 children)

Hm interesting. Definitely not a traffic overload problem, as cloudflare can handle way more than we can dish out even on our worst day. Thanks for the report, keep em coming

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (7 children)

I just updated our server's time from the internet and restarted everything. Hopefully that will do it.

https://community.cloudflare.com/t/community-tip-fixing-error-525-ssl-handshake-failed/44256

[–]magnora7 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (0 children)

Cool, good effort. Here's hoping! Now we'll know for sure. If this doesn't work then we can shut off my cloudflare api scripts for a while and see if that fixes it. I bet this restart will work though

[–]magnora7 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (5 children)

I just got the 525 and it lasted across like 3 page refreshes. They said to look here: https://support.cloudflare.com/hc/en-us/articles/115003011431#525error

I just find it weird it's rotating across all these various errors so randomly

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (3 children)

This is the only mildly red flag for me "No SNI support". I don't really know what that means or if we have it.

Other than that, I haven't changed a damn thing in like a year. Hmmm. I saved off syslog and our nginx logs so if something is logged on our end, we can maybe find it. The logs are in /home/USER/backup-random/525-error

[–]magnora7 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (2 children)

Yeah I didn't change anything either in a long time. I made those API scripts like 8 months ago, that was the last cloudflare-related thing I did. I added some IP addresses to the firewall ban list too but that shouldn't affect anything like the 525 errors. Thanks for trying the config changes, let's just let that ride for a bit and see if there's any errors

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (1 child)

Cool. Imo there's zero chance that it's your scripts doing this. It's between CF and our nginx only.

[–]magnora7 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

Cool I hope you are right, what you said makes sense

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

I also just made a few changes to our nginx SSL configuration out of desperation. I disabled as much fancy shit as possible.

[–][deleted] 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (1 child)

The cert is close to expiring, my only guess, but it makes no sense.

[–]magnora7 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (0 children)

Yeah I don't get it tbh. I would guess 60% chance it's cloudflare's problem