Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BCrawlabilityno robots.txt, no sitemapREVIEW
robots.txt is optional but recommended. It tells search engine crawlers which pages to index.
No robots.txt — crawlers fetch /robots.txt and get 404; not breaking but means default crawl behavior with no directives or sitemap reference.
Learn more ▾ ▴
A minimal robots.txt with `User-agent: * / Allow: / / Sitemap: https://example.com/sitemap.xml` covers the basics. Without it, crawlers behave fine but lose the sitemap signal and can't be selectively blocked from crawl-traps.
Source: robotstxt.org
A sitemap helps search engines discover and index your pages more efficiently.
No sitemap.xml — Google relies on crawl-graph discovery alone, slowing indexing of deep or fresh URLs.
Learn more ▾ ▴
A sitemap accelerates Google's discovery of new and updated content. Most CMSes auto-generate one; static-site frameworks need a build-step plugin. Reference it from robots.txt and submit in Search Console to confirm Google can fetch it.
Source: sitemaps.org / Google Search Central
No robots.txt found
This is fine for most sites — a missing robots.txt allows all crawling by default.
No sitemap found
Adding a sitemap helps search engines discover your pages.
BTLS Certificate Expiry & Recommendations294 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryAWS CloudFront (Error from cloudfront)REVIEW
A+DNS Records4 A records, 52 ms lookupPASS
| A | 13.227.173.72, 13.227.173.61, 13.227.173.19, 13.227.173.30 |
| AAAA | — |
| CNAME | — |
| NS | ns-532.awsdns-02.net, ns-1897.awsdns-45.co.uk, ns-1314.awsdns-36.org, ns-128.awsdns-16.com |
| MX | 0 iec-ch.mail.protection.outlook.com |
| TXT | google-site-verification=drLcutwuMMQdNlYy8hY2Y4_5IPRQkSu3OaRn5dpY5yY logmein-verification-code=8434c12c-444b-46d0-a562-b6ad0a896b68 onetrust-domain-verification=601218ba5671483380173869c467a09a atlassian-domain-verification=0JzbxHLXBtIJHHPkpJGcqLOVCKrH4WKLDahvvtAa8vAUYS9VlU... google-site-verification=zz2J8TwVyHmBfCHlby1cPElUU1x1rBWtPh3SnxXvq5w atlassian-sending-domain-verification=083a645a-f06f-4d93-9bcb-1e6d71648f38 SPF v=spf1 ip4:52.59.66.245 ip4:18.200.117.55 ip4:52.48.155.193 ip4:54.240.4.0/27 in... apple-domain-verification=Q4xf7VSisHaaLr8k MS=ms52577494 |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Redirect ChainNo redirects — direct accessPASS
https://iec.ch
59 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://iec.ch | 202 | 59 ms | HTTP/1.1 | CloudFront |
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
HTTP → HTTPS
Consistent
A+HTTP Probe TimingTotal 101 ms — DNS, TCP, TLS, TTFB, content transfer breakdownPASS
Connection waterfall
Domain IntelligenceDomain intelligence data not availableINFO
RDAP and WHOIS lookup both failed