Infrastructure
· 17 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.FMulti-Resolver DNS SpeedActionAll public resolvers failed to resolve the domainFIX
CDNSSECActionDNSSEC posture not checkedREVIEW
CCAA RecordsActionCAA posture not checkedREVIEW
CReverse DNSAction0/4 IPs match cert SANREVIEW
BCrawlabilityno robots.txt, no sitemapREVIEW
robots.txt is optional but recommended. It tells search engine crawlers which pages to index.
No robots.txt — crawlers fetch /robots.txt and get 404; not breaking but means default crawl behavior with no directives or sitemap reference.
Learn more ▾ ▴
A minimal robots.txt with `User-agent: * / Allow: / / Sitemap: https://example.com/sitemap.xml` covers the basics. Without it, crawlers behave fine but lose the sitemap signal and can't be selectively blocked from crawl-traps.
Source: robotstxt.org
A sitemap helps search engines discover and index your pages more efficiently.
No sitemap.xml — Google relies on crawl-graph discovery alone, slowing indexing of deep or fresh URLs.
Learn more ▾ ▴
A sitemap accelerates Google's discovery of new and updated content. Most CMSes auto-generate one; static-site frameworks need a build-step plugin. Reference it from robots.txt and submit in Search Console to confirm Google can fetch it.
Source: sitemaps.org / Google Search Central
No robots.txt found
This is fine for most sites — a missing robots.txt allows all crawling by default.
No sitemap found
Adding a sitemap helps search engines discover your pages.
BURL Variantswww/non-www, trailing slash, HTTP→HTTPSREVIEW
www / non-www
HTTP → HTTPS
HTTP version does not redirect to HTTPS
CHTTP Probe TimingActionTotal 1721 ms — DNS, TCP, TLS, TTFB, content transfer breakdownREVIEW
Connection waterfall
BTLS Certificate Expiry & Recommendations75 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BOperational Status PageNo status page link detectedREVIEW
BHealth Check EndpointNo conventional health endpoint foundREVIEW
A+DNS Records2 A records, 15 ms lookupPASS
| A | 172.67.174.88, 104.21.80.49 |
| AAAA | 2606:4700:3030::ac43:ae58, 2606:4700:3030::6815:5031 |
| CNAME | — |
| NS | amy.ns.cloudflare.com, yew.ns.cloudflare.com |
| MX | 10 mail.govtrank.com |
| TXT | SPF v=spf1 a mx ip4:111.118.176.141 include:_spf.sitecountry.net ~all |
| CAA | Lookup not available with standard resolver |
A+Subdomain TakeoverNo subdomain takeover risk detectedPASS
A+Redirect ChainNo redirect data availablePASS
A+IPv6 ReadinessIPv6 reachable (3 ms)PASS
ACDN & DeliveryCloudflare (DYNAMIC)PASS
A+CDN Cache ObservabilityCache state: DYNAMICPASS
Domain IntelligenceDomain intelligence data not availableINFO
RDAP and WHOIS lookup both failed