Skip to content
5xx · Server Error

525 SSL Handshake Failed

A Cloudflare error meaning the TLS handshake with the origin server failed.

What it means

HTTP 525 is a non-standard Cloudflare status returned when the SSL/TLS handshake between Cloudflare and the origin server fails. Cloudflare reached the origin but could not negotiate a secure connection, often because of a certificate or cipher mismatch on the origin.

When it happens

It happens when the origin's certificate is missing, expired, or misconfigured, when Cloudflare's SSL mode (such as Full or Full Strict) does not match what the origin can offer, or when the two sides share no compatible cipher suite.

How to fix it

  • Confirm the origin has a valid, unexpired certificate installed correctly.
  • Match Cloudflare's SSL/TLS mode to the origin's capabilities (Full Strict requires a valid origin certificate).
  • Check that Cloudflare and the origin support a common cipher suite and TLS version.
  • Install a Cloudflare Origin CA certificate on the origin if appropriate.

SEO impact

Damaging if sustained. A failed handshake means crawlers get a server error rather than the page, so it cannot be indexed until the TLS issue is resolved.

Check it with Sitewell

Find out which of your URLs return 525

Paste a list of URLs and Sitewell checks the status code of every one at once — free and without signup.

Bulk HTTP status checker →

Related codes

500 Internal Server Error

A generic error meaning the server encountered an unexpected condition.

501 Not Implemented

The server does not support the functionality required to fulfil the request.

502 Bad Gateway

A server acting as a gateway received an invalid response from the upstream server.

503 Service Unavailable

The server is temporarily unable to handle the request, often due to overload or maintenance.

504 Gateway Timeout

A gateway server did not receive a timely response from the upstream server.

505 HTTP Version Not Supported

The server does not support the HTTP protocol version used in the request.

Related guides

HTTP status codes explained: a practical primer for SEOs

A plain-English primer on HTTP status codes for SEOs: what the 2xx, 3xx, 4xx, and 5xx families mean, which ones affect rankings, and the codes worth knowing.

How to find and fix broken links

A practical walkthrough for finding broken links on your site, working out why each one breaks, and fixing them so visitors and crawlers stop hitting dead ends.

← All HTTP status codes