Keywords: WordPress - AWS - Technical issue - Secure Connections (SSL/HTTPS)
bnsupport ID: 9bc58722-1a21-1566-5319-bd4a2426d344
we are deploying a new monitoring system and we added some SSL checks on our website. One of the Warning was that the website was using TLS1.1 so I had the "great" idea to disable it and enable only TLS1.2.
In the /opt/bitnami/apache2/conf/bitnami/bitnami.conf I had these lines:
SSLProtocol all -SSLv3 -SSLv2
#SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS !EDH !RC4"
and I changed them into
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
to disable TLS1, TLS1.1, SSLv2 and SSLv3...
After that change I restarted Apache with no issues but the website now is unreachable with the error "This site can’t provide a secure connection. ERR_SSL_PROTOCOL_ERROR".
We are using Cloudfront but the problem is that the webiste is not able to provide an SSL connection to the AWS Cloudfront so I receive a "Bad Gateway" if I try to reach the site through the hostname and a ERR_SSL_PROTOCOL_ERROR if I try to reach the site via public IP.
I dont' see any error in the logs and Apache starts normally. Certs are not expired and correctly installed (they were working before).
Any idea on what could cause this issue?
I have create a support bundle so you have more details.
Any help would be much appreciated.