is your SSH/TLS settings on Cloudflare set to Full?
As for the output regarding Cloudflare proxying:
- Delete the DNS record to your app on Cloudflare
- Remove fly certs:
fly certs remove example.com - Recreate app cert:
fly certs add example.com - Add DNS record on CF:
Type: CNAME, Name: @ for root or w/e for subdomain, target: your-app.fly.devIMPORTANT: make sure you disable proxy, it should readDNS only. - Wait a few minutes then go to your site. Once the TLS connection is good, you can switch to
Proxy
You don’t need to setup the acme challenge