And if you’re a student or new user who wants to take advantage of all the great features Cloudflare offers, the steps below should help you get there. This brief tutorial will show students and new users a step-by-step guide on how to set up Drupal websites and use Cloudflare’s CDN, free SSL, and security features to help improve their website performance and protect their sites against malicious actors. This setup might take a while to complete and the process below should work on other websites as well. It doesn’t have to be Drupal. This setup should work on other CMSs and plain HTML sites out of the box. When you’re ready to set up your server and Cloudflare to use Origin Certificate, follow the steps below:
How to sign up for Cloudflare
The first step in this tutorial is to sign up for a Cloudflare account. This post assumes that you already have registered a domain name. If you don’t, then go and get one before continuing further. If you already have a Cloudflare account, then skip the registration below. https://dash.cloudflare.com/sign-up Type in your email address and click Create Account. Once the account is created and you’ve verified your email address and logged back into the Cloudflare account, click the button or link (Add a Site) to add a site to your account. Next, type in the domain name you have registered. Cloudflare service will help speed up and protect the site you add. Next, Cloudflare will begin to query your domain DNS provider for the records in the DNS table. If the domain is online, Cloudflare should find it and import the records into its DNS systems. After that, select the plan you want to use for the site. For this tutorial, we’re going to be using Cloudflare free plan. When you’re done, you should see two nameservers provided to you by Cloudflare. What you need to do is log on to your domain provider’s portal. where you have your domain, and replace the nameservers with the ones Cloudflare gives you. For example, our example.com site is hosted with Google Domains. Log on to your Google Domains accounts and select to use custom nameservers. You’ll have to option to enter the nameservers provided to you by Cloudflare. Save your changes when you’re done. Once you’ve saved your custom nameservers changes, go back to your Cloudflare account and wait for Cloudflare to see the changes. Depending on your domain provider, it makes take up to an hour for the DNS changes to be visible on Cloudflare. Once all is ready, you’ll see your site status as Active. When everything is done, you should also see your Cloudflare account with DNS entries as shown below. Your DNS records might have more entries than the two below. These two entries are the most important for running your website. After that, click on the Crypto tab and choose to enable Full (strict) SSL. This should turn on SSL for the site. While still on the Crypto tab, scroll down to Origin Certificates. Then click the button to create the certificate. Use the free TLS certificate signed by Cloudflare to install it on your origin server. Origin Certificates are only valid for encryption between Cloudflare and your origin server. Next, choose to Let Cloudflare generate a private key and a CSR for the domain. Click Next. Then copy a paste these into a text file onto your server. On Ubuntu, run the commands below to create the Private key, Certificate and Origin pull files (3 files in total). Copy and paste each content into the respective file. and save. For the Private key file. run this, then copy and paste the private key given to you into the file and save. For the certificate file, run this and copy and paste the certificate content into the file and save. You’ll also want to download the Cloudflare Origin Pull certificate. You can download that from the link below: Set up authenticated origin pulls · Cloudflare SSL docs Zone-Level — Cloudflare certificate Under Zone-level certificate, expand the certificate button, the copy its content. Next, run the commands below to create an origin-pull-ca.pem file, then paste the certificate content into the file below and save. Once done, you should have three files. The cloudflare_key_example.com.pem, cloudflare_example.com.pem and origin-pull-ca.pem. We will use these files in the Nginx config below After saving the key, certificate and origin pull the certificate files. Continue below. Still, on the Crypto page in your Cloudflare account, enable Always use HTTPS and you may also change settings for HSTS but not necessary. Next, turn on Authenticated Origin Pulls and Opportunistic Encryption, and continue. Then, turn on Automatic HTTPS Rewrites and continue. Next, move to the Page Rules tab. then create a new rule for the site. then type the URL and choose Always Use HTTPS HTTP://* example.com/* Always Use HTTPS Save your settings and you’re done with setting up Cloudflare.
How to Install and Configure Drupal
Now that Cloudflare is configured, log on to your server and configure Drupal. First, install the Nginx HTTP server since we’re using Nginx for this post. To install the Nginx server, run the commands below: After installing Nginx, the commands below can be used to stop, start and enable the Nginx service to always start up with the server boots. Now that Nginx is installed. to test whether the web server is working, open your browser and browse to the URL below. https://localhost If you see the page above, then Nginx is successfully installed.
How to Install MariaDB Database Server
Drupal also requires a database server to store its content. If you’re looking for a truly open-source database server, then MariaDB is a great place to start. To install MariaDB run the commands below: After installing MariaDB, the commands below can be used to stop, start and enable the MariaDB service to always start up when the server boots. Run these on Ubuntu 16.04 LTS Run these on Ubuntu 19.04 and 18.04 LTS Next, run the commands below to secure the database server with a root password if you were not prompted to do so during the installation. When prompted, answer the questions below by following the guide.
Enter current password for root (enter for none): Just press the Enter Set root password? [Y/n]: Y New password: Enter password Re-enter new password: Repeat password Remove anonymous users? [Y/n]: Y Disallow root login remotely? [Y/n]: Y Remove test database and access to it? [Y/n]: Y Reload privilege tables now? [Y/n]: Y
Now that MariaDB is installed, to test whether the database server was successfully installed, run the commands below. type the root password when prompted. If you see a similar screen as shown above, then the server was successfully installed.
How to Install PHP 7.2-FPM and Related Modules
Drupal CMS is a PHP based CMS and PHP is required. However, PHP 7.2-FPM may not be available in Ubuntu default repositories. To run PHP 7.2-FPM on Ubuntu 16.04 and previous, you may need to run the commands below: Then update and upgrade to PHP 7.2-FPM Next, run the commands below to install PHP 7.2-FPM and related modules. After installing PHP 7.2, run the commands below to open the PHP default configuration file for Nginx. The lines below are a good setting for most PHP based CMS. Update the configuration file with these and save. Every time you make changes to the PHP configuration file, you should also restart the Nginx web server. To do so, run the commands below: Now that PHP is installed, to test whether it’s functioning, create a test file called phpinfo.php in the Nginx default root directory. ( /var/www/html/) Then type the content below and save the file. Next, open your browser and browse to the server’s hostname or IP address followed by phpinfo.php http://localhost/phpinfo.php You should see the PHP default test page.
How to Create Drupal Database
Now that you’ve installed all the packages that are required for Drupal to function, continue below to start configuring the servers. First, run the commands below to create a blank Drupal database. To log on to the MariaDB database server, run the commands below. Then create a database called drupal Create a database user called drupaluser with a new password Then grant the user full access to the database. Finally, save your changes and exit.
How to Download Drupal Latest Release
To get Drupal’s latest release you may want to use the GitHub repository. Install Composer, Curl and other dependencies to get started. After installing curl and Composer above, change into the Nginx root directory and download Drupal packages from Github. Always replace the branch number with the latest branch. Then run the commands below to set the correct permissions for Drupal to function.
How to Configure Nginx for Drupal
Finally, configure the Apache2 site configuration file for Drupal. This file will control how users access Drupal content. Run the commands below to create a new configuration file called example.com Then copy and paste the content below into the file and save it. Replace the highlighted line with your domain name and directory root location. Also, make sure to reference the certificate files created above during Cloudflare setup. Save the file and exit.
How to Enable the Drupal site
After configuring the VirtualHost above, enable it by running the commands below Next, open your browser and browse to your domain name used above. You should see the Drupal setup wizard complete. Please follow the wizard carefully. https://example.com/ Then follow the on-screen instructions and select the installation language here. Next, select the installation profile and continue On the next screen, enter the database connection info you created above and continue. Then create an admin account and the Drupal site info and finish the installation. after a brief moment, you should see your new site created. Log on and start building your site! Do forget to install this Cloudflare module after installing Drupal. https://www.drupal.org/project/cloudflare In the future when you want to upgrade to a newly released version, simply run the commands below to upgrade. That’s it! Congratulations! You have successfully installed Drupal CMS with Cloudflare support on Ubuntu 16.04 | 18.04 You may also like the post below: