Igor Kromin |   Consultant. Coder. Blogger. Tinkerer. Gamer.

I've been using CloudFlare on my various web sites for a number of years now and the reason for using this service has just become even more compelling. Recently Google introduced HTTPS as a rank for website indexing which means if you don't have a HTTPS web site, you will be down-ranked in search results. For HTTPS you of course need an SSL certificate.

So why am I talking about CloudFlare? CloudFlare is a distributed caching network that can speed up your web site with very little setup required, just change your DNS servers and you're done. They also offer SSL to all their customers, including the ones on the free plan.

Getting this set up is easy. After singing up and setting up your web site to work via CloudFlare, go to the 'Crypto' tab and enable SSL. The easiest option is to use 'Flexible' which means you don't actually need an SSL certificate on your web server but your site will still be secured using CloudFlare's certificate.

Here's what my travelblog.ws certificate looks like after doing this set up.

I wouldn't recommend using the 'Flexible' option but going for the 'Full (strict)' option. This requires you to install a certificate on your web server. That means traffic between your server and CloudFlare is encrypted. Luckily CloudFlare can generate a certificate for you for free!

In the 'Crypto' tab scroll down to 'Origin Certificates' and click 'Create Certificate' then follow all the prompts and finally save your certificate and private key. You need to use Firefox for this step as other browsers weren't compatible. I created an RSA certificate and let CloudFlare fill in my domains for me I also left the expiration at the default value of 15 years.


When you're done, save your certificate and private key and install them on your server. I won't go into details on how to install this into your particular server as that can vary, besides it is covered in detail here. In my case I also had to download the CloudFlare CA Certificate to be able to install the origin certificate in my server (sometimes this is referred to as the CABUNDLE). There's more detail on these here.

When my server had the generated origin certificate installed, I went back to CloudFlare and enabled 'Full (strict)' mode.

That's all there is to it! You get a free secured site while having its loading times boosted. You can't ask for more, especially if it's free!


Hope you found this post useful...

...so please read on! I love writing articles that provide beneficial information, tips and examples to my readers. All information on my blog is provided free of charge and I encourage you to share it as you wish. There is a small favour I ask in return however - engage in comments below, provide feedback, and if you see mistakes let me know.

If you want to show additional support and help me pay for web hosting and domain name registration, donations, no matter how small, are always welcome!

Use of any information contained in this blog post/article is subject to this disclaimer.
comments powered by Disqus
Other posts you may like...