marlus Using Cloudflare to cache your site is a great way to improve its performance. When using it with Opalstack there are 2 main areas of concern with the setup - DNS and SSL:
SSL
You'll need the following settings at Cloudflare:
- Under "SSL/TLS > Overview", set the SSL mode to "Full (strict)".
- Under "SSL/TLS > Edge Certificates", set "Always Use HTTPS" to OFF. It needs to be off in order for SSL provisioning to work on our end.
On Opalstack's end in your site settings:
- Enable Let's Encrypt SSL.
- Enable "Encrypt All Traffic".
Once that's done and the certificate has been generated, visitor traffic to your site will be encrypted with Cloudflare's SSL and traffic between Cloudflare and your Opalstack server will be encrypted with your Let's Encrypt certificate at Opalstack.
DNS
You'll need to create the following DNS records at Cloudflare:
- A records for every domain and subdomain that will be attached to the site.
- MX records for your email.
- Various email-related TXT records for SPF, DKIM, and DMARC.
If you're using Opalstack's email services then the details for the records you'll need to create are available at: Using External Name Servers > Records for your email.
If you run into any problems setting things up on our end then feel free to contact our support team and we'll be happy to assist.
