Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BCrawlabilityno robots.txt, no sitemapREVIEW
robots.txt is optional but recommended. It tells search engine crawlers which pages to index.
No robots.txt — crawlers fetch /robots.txt and get 404; not breaking but means default crawl behavior with no directives or sitemap reference.
Learn more ▾ ▴
A minimal robots.txt with `User-agent: * / Allow: / / Sitemap: https://example.com/sitemap.xml` covers the basics. Without it, crawlers behave fine but lose the sitemap signal and can't be selectively blocked from crawl-traps.
Source: robotstxt.org
A sitemap helps search engines discover and index your pages more efficiently.
No sitemap.xml — Google relies on crawl-graph discovery alone, slowing indexing of deep or fresh URLs.
Learn more ▾ ▴
A sitemap accelerates Google's discovery of new and updated content. Most CMSes auto-generate one; static-site frameworks need a build-step plugin. Reference it from robots.txt and submit in Search Console to confirm Google can fetch it.
Source: sitemaps.org / Google Search Central
No robots.txt found
This is fine for most sites — a missing robots.txt allows all crawling by default.
No sitemap found
Adding a sitemap helps search engines discover your pages.
BTLS Certificate Expiry & Recommendations47 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryCloudflareREVIEW
A+DNS Records2 A records, 149 ms lookupPASS
| A | 2.58.104.11, 2.58.104.10 |
| AAAA | — |
| CNAME | — |
| NS | exns1.okstate.edu, terra.osrhe.edu, exns2.okstate.edu |
| MX | 10 okstate-edu.mail.protection.outlook.com |
| TXT | yahoo-verification-key=e2XtRxQeUm2UZyElPa506GtHgruA85sKiyOadEqLT4o= facebook-domain-verification=dttkrstx3erla1gwkc5pht586aqpmv mailerlite-domain-verification=ea25489e03399d05132d20d24f00bd7b8193ae1a google-site-verification=CLjGkqRW_rgxY96VYvnhzQZGJhVjsO8ua9f17_IFyvc google-site-verification=wZRz1umCqo9G5LP3CMwoTOMe2z0hdDtpeoZTnJLTAy0 SPF v=spf1 ip4:139.78.133.0/27 ip4:35.80.141.6 ip4:44.229.121.55 ip4:44.240.211.67 i... facebook-domain-verification=dmgfaxn9s9mhxsuju9h4tunpog86lx 3JMCxtux+6VSwAhXEbjOJf6im7jDTS+TeWQk+GtmOIWR+ez1RJrDBpHamJKgBxfNkBPL2XNBHgnECdfZ... MS=ms12345567 apple-domain-verification=NDjW1IZwTOFQUUSR mailerlite-domain-verification=a108b04f8ed096b3f8cdf1839bfb3756ed859fe6 brevo-code:0db9f964ea4581d8b48649713bcc8623 |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Redirect Chain0 redirect(s), 25 ms totalPASS
https://okstate.edu
25 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://okstate.edu | 403 | 25 ms | HTTP/1.1 | cloudflare |
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
HTTP → HTTPS
Consistent
A+Domain Intelligenceokstate.edu — 40 years, 8 months old, hosted on SQUIZ-AS-AP Squiz Pty Ltd, AUPASS
13 days
July 31, 2026
47 days
Issued by Let's Encrypt
40 years, 8 months
Registered March 3, 1986
Status unknown
Protects against DNS spoofing
SQUIZ-AS-AP Squiz Pty Ltd, AU
ASN AS55532
2.58.104.10
Registrar unknown
Expiry timeline
Recommended actions
- Renew the domain or enable auto-renewal to prevent accidental expiry