Using Cloudflare FULL ssl and the A record for mail is NOT proxied. "Always use https" is OFF in Cloudflare. Http to https redirect is via .htaccess. The ip for the mail A record is on the origin server but different than the ip for the root domain. Auto ssl fails for the mail A record even though it succeeds for the other domains records. Ideas/suggestions? Thanks.