Disable the cloudflare shit entirely - you can let it host your DNSes but that's it (what I'd suggest). It'll be an instant fix.
Update all your vhosts to make them match the fact that cloudflare is now between your visitors and your webserver. This also means you'll have to deploy Cloudlare's certs, not let's encrypt ones.
I'd also remove this entire post, by the way; I haven't checked but it likely gives too much info about you. I'll happily help you with either of those two options in DM, or matrix, if you want.
Two options:
I'd also remove this entire post, by the way; I haven't checked but it likely gives too much info about you. I'll happily help you with either of those two options in DM, or matrix, if you want.