Skip to main content
Keep Your Business Open During COVID-19Learn More
Call us
Phone numbers and hours
Help Center

Explore our online help resources

BlogHelp

Website Security and Backups Help

502, 504 or redirect error when I open my website after Web Application Firewall (WAF) setup

Sometimes when you set up the WAF that comes with Website Security, you might see an error like HTTP 502 - Unable to Connect to the Origin Server, 504 - Gateway Timeout or a redirect error when you try to go to your site. There are two settings that can cause your site to not open after you set up the WAF.

Change the SSL mode on your WAF

If you already have an SSL certificate set up on your website and then enable the Web Application Firewall (WAF), you may need to adjust your SSL mode for your website to work correctly.

  1. Go to your GoDaddy product page.
  2. Under Website Security and Backups, select Manage next to the Website Security account you want to manage.
  3. From the navgation menu, select Firewall.
  4. On the card for your website, select  SSL  from the settings menu.
  5. Scroll down to  SSL mode. Choose the SSL mode that makes sense for your website and then select Save.
    • Full HTTPS - This is our preferred method for protecting your website, but it requires you to  install an SSL certificate  on your hosting server. This fully secures your traffic from your customers, to our firewall, to your website.
    • Partial HTTPS  - If your website doesn't have an SSL installed, we'll proxy one on your behalf. This helps prevent Man in the Middle (MitM) attacks by securing the part of your traffic that takes place between your customers and our firewall.
  6. After you make a change to your SSL mode, clear your WAF cache.
  7. It may take up to 5 minutes for changes to take place. If you are still unable to access your site after 5 minutes, continue to change the Force passing the hostname via TLS/SSL setting.

Change the Force passing the hostname via TLS/SSL  setting

  1. Go to your GoDaddy product page.
  2. Under Website Security and Backups, select Manage next to the Website Security account you want to manage.
  3. From the navigation menu, select Firewall.
  4. Select the domain name that the firewall is configured on, then select Settings.
  5. Select Security.
  6. Make sure the option Force passing the hostname via TLS/SSL is selected and then select Save Advanced Security Options.
    Advanced Security Options
  7. If you make a change, clear your WAF cache. It may take up to 5 minutes for changes to take place.

If you are still unable to access your site, open a support ticket and we will help you.

  1. Go to your GoDaddy product page.
  2. Under Website Security and Backups, select Manage next to the Website Security account you want to manage.
  3. Select Help near the top of the page.
  4. Select Product Support and then select New ticket.
  5. From the Regarding menu, select Website Firewall.
  6. From the I'm having trouble with: menu, select My site is down.
  7. Type "Site down after WAF setup" for your Subject.
  8. Add any details you want to include and then select Submit Request.