Are these coming through an HTTPS endpoint?
If you add the force_https option in your fly.toml, they’ll get a redirection and then our proxy will reject them if they can’t provide a SNI (unless you have default_self_signed TLS handler option set to true).
For example:
[[services.ports]]
handlers = ["http"]
port = 80
force_https = true