LocalHost.Co
Home / Articles / http error 523
error-codes

http error 523

Discover the root causes of HTTP Error 523 Origin Is Unreachable. Learn how DNS changes, routing failures, and host-level blocks trigger this Cloudflare-specific error.

21 Mar 2026

The http error 523, accompanied by the message "Origin Is Unreachable," is a specific HTTP status code generated by Cloudflare. When a user sees this error, it indicates that Cloudflare's edge servers are trying to connect to the website's designated origin hosting server, but there is a fundamental routing or network failure preventing the connection. The server isn't just refusing the connection (like a 521) or timing out (like a 504); Cloudflare literally cannot find a valid network path to the origin.

Understanding the "Origin Is Unreachable" Failure

To deliver content securely and quickly, Cloudflare acts as a middleman. It receives the user's request and then looks up the IP address of the origin server in its internal DNS settings to forward the request. A 523 error occurs when that connection attempt fails at the network layer.

This failure implies that the IP address Cloudflare is trying to reach is either non-existent on the internet, physically disconnected from the global routing table, or the hosting provider itself has implemented a hard block (null route) on the server's IP.

Primary Causes of an HTTP 523 Error

Diagnosing a 523 error requires investigating network-level infrastructure rather than application-level code like PHP or Node.js. The most common causes include:

1. Incorrect DNS Records in Cloudflare

This is the leading cause of 523 errors. When a website owner moves their site to a new hosting provider, the new host provisions a new IP address for the server. If the owner forgets to log into the Cloudflare dashboard and update the "A" record to point to this new IP address, Cloudflare will continue trying to route traffic to the old, now-deactivated IP. Because that old IP no longer routes to an active server, Cloudflare returns a 523.

2. BGP Routing Issues at the Hosting Provider

The internet relies on the Border Gateway Protocol (BGP) to route traffic between massive networks. Occasionally, a hosting provider (like AWS, DigitalOcean, or a local data center) experiences a major network outage or a BGP route leak. During this time, the entire IP block containing your origin server disappears from the global internet. Cloudflare cannot find a path to the server and throws a 523 error.

3. Null Routing (Blackholing) by the Host

If your origin server is under a massive Denial of Service (DoS) attack that bypasses Cloudflare, or if the server has been compromised and is sending out spam, your hosting provider might implement a "null route" (often called a blackhole). This is a defense mechanism where the host intentionally drops all traffic to and from your server's IP address to protect the rest of their data center. Since the route is dead, Cloudflare returns a 523.

How to Fix an Error 523 (For Site Administrators)

If your website is serving a 523 error, you must verify the link between Cloudflare and your host.

Step 1: Verify Cloudflare DNS Settings

Log into your Cloudflare dashboard and navigate to the DNS settings. Check the "A" record for your root domain and the "CNAME" records for subdomains (like www). Cross-reference these IP addresses with the actual IP address provided by your current web hosting control panel. If they do not match perfectly, update the Cloudflare records to the correct IP.

Step 2: Check Server Network Status

Try to connect to your origin server directly, bypassing Cloudflare. You can do this by pinging the server's direct IP address or attempting to connect via SSH. If the server does not respond to direct pings or SSH connections, the problem lies with your hosting provider.

Step 3: Contact Your Hosting Provider

If the DNS is correct, but the server is unreachable, you must open a support ticket with your web host. Ask them to verify if there is an ongoing network outage in the data center, or if your specific IP address has been null-routed or suspended due to a security violation or billing issue.

Frequently Asked Questions

Can clearing my browser cache fix a 523 error?

No. A 523 error represents a broken network link between the Cloudflare proxy and the backend data center. It has nothing to do with the user's browser, computer, or local internet connection.

How is a 523 different from a 521 Web Server Is Down error?

In a 521 error, Cloudflare can successfully reach the physical server, but the server's firewall or web service (like Nginx) actively refuses the connection. In a 523 error, Cloudflare cannot even find a network path to reach the physical server; the IP address is effectively dead.

Does a 523 error affect my SEO rankings?

Yes. If Googlebot encounters a 523 error, it cannot crawl your content. If the error persists for more than a few days, Google will assume the site is permanently offline and begin de-indexing your pages.

Will pausing Cloudflare fix the 523 error?

It is highly unlikely. If Cloudflare cannot reach the origin server due to a routing issue or a dead IP address, bypassing Cloudflare will just result in the user's browser timing out directly, instead of seeing the formatted Cloudflare 523 error page.

Reviews

No approved reviews yet.

Name, review, and a 5-star rating.
Showing approved comments for this article and language.

Related Articles

  • err_ssl_protocol_error

    Learn how to fix the err_ssl_protocol_error in your browser. This comprehensive guide covers common causes like date/time issues, cached data, and antivirus settings.

  • err_http2_protocol_error

    Encountering the err_http2_protocol_error? Discover the root causes behind this HTTP/2 connection failure and follow our detailed solutions to restore access.

  • err_quic_protocol_error

    Resolve the err_quic_protocol_error quickly with our step-by-step troubleshooting guide. Fix connection issues by disabling QUIC, resetting flags, or checking extensions.

  • ssl_error_bad_cert_domain

    Fix the ssl_error_bad_cert_domain warning by understanding why a website's SSL certificate domain doesn't match the URL you visited and how to bypass it safely.

  • ssl_error_no_cypher_overlap

    The ssl_error_no_cypher_overlap occurs when the client and server share no common encryption ciphers. Find out how to update protocols and bypass this barrier safely.

  • ssl_error_rx_record_too_long

    Struggling with ssl_error_rx_record_too_long? Learn how to fix this Firefox-specific secure connection error caused by server misconfigurations or port conflicts.

  • whea_uncorrectable_error

    A whea_uncorrectable_error is a serious hardware BSOD in Windows. Read our guide to diagnose CPU, RAM, or voltage issues and restore system stability permanently.

  • dxgi_error_device_removed

    Fix the dxgi_error_device_removed crash. Find out why your system thinks the graphics card was physically removed and how to resolve driver and power supply issues.