Cloudflare Enables HTTPS TLS 1.3 Backend Origin Communication

Cloudflare Enables HTTPS TLS 1.3 Backend Origin Communication

Cloudflare just announced they have officially enabled HTTPS TLS v1.3 backend origin communication with origin web servers which have HTTP/2 HTTPS TLS 1.3 enabled i.e. Cloudflare Strict SSL mode. So when you create a new Nginx HTTP/2 HTTPS site with Centmin Mod Nginx, it automatically now has TLS 1.3 enabled

I can verify that Cloudflare is communicating with my Centmin Mod Nginx origin servers over TLS 1.3 protocol now using custom Cloudflare nginx logging I setup on my servers behind Cloudflare. log{,-*} | grep -v ‘SERVER_IP’ | awk ‘{n = 2; for (–n; n = 0; n–){ printf “%s\t”,$(NF-n)} print “”}’ | sort | uniq -c | sort -rn | head -n20 | column -t
299930 TLSv1.2 TLSv1.2 TLSv1.3 TLS_AES_256_GCM_SHA384
43 – –
35 TLSv1.2 waiting for ages for TLS 1.3 support on origin connections with Cloudflare, so glad to finally see it happen.

Source: community.centminmod.com