Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.BRedirect Chain2 redirect(s), 321 ms totalREVIEW
https://icrc.org
90 ms · HTTP/1.1
https://www.icrc.org/
147 ms · HTTP/1.1
https://www.icrc.org/en
84 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://icrc.org | 308 | 90 ms | HTTP/1.1 | |
| 2 | https://www.icrc.org/ | 301 | 147 ms | HTTP/1.1 | |
| 3 | https://www.icrc.org/en | 200 | 84 ms | HTTP/1.1 |
See the visual redirect chain in the HTTP Probe tab →
Each redirect adds latency. Try to minimize the chain to 1 hop.
Redirect chain — each hop adds latency; combine into one redirect where possible.
Source: Google Search Central / web.dev
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BTLS Certificate Expiry & Recommendations143 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryAzure CDN (CONFIG_NOCACHE)REVIEW
A+DNS Records2 A records, 32 ms lookupPASS
| A | 13.107.226.42, 13.107.253.42 |
| AAAA | — |
| CNAME | — |
| NS | ns2-04.azure-dns.net, ns3-04.azure-dns.org, ns4-04.azure-dns.info, ns1-04.azure-dns.com |
| MX | 0 icrc-org.mail.protection.outlook.com |
| TXT | facebook-domain-verification=zgn2fuwl11nwq29f7fpy34z1a0708v twilio-domain-verification=3089b74d71b69953908eb42acbe658fd hpe-greenlake-domain-verification=65707831677176425165646c424c424631726c4e33324b... 2lpld2v5mp2lwm6c2xwqnl3wxk1d0mvb 3vz899sk6pw0mm6twln3srsx79ygpjb5 google-site-verification=L9wvQjwyVwkxd1ZJe08yVI-3EzuCK_IC4urnShIktbc anthropic-domain-verification-y7w4yp=Po5F2aIyOkoPv0q8ocrvcHJUx SPF v=spf1 mx include:spf.protection.outlook.com include:_spf-dc33.sapsf.eu ip4:80.9... _h1bt40nmd94810gydk6ytxx8324shll work-accounts-domain-verification=ojIvZeocTrb88A4JrXt5KXCT3tWCTB |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Crawlabilityrobots.txt present, sitemap with 17 URLsPASS
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites like Yahoo!
# and Google. By telling these "robots" where not to go on your site,
# you save bandwidth and server resources.
#
# This file will be ignored unless it is at the root of your host:
# Used: http://example.com/robots.txt
# Ignored: http://example.com/site/robots.txt
#
# For more information about the robots.txt standard, see:
# http://www.robotstxt.org/robotstxt.html
User-agent: *
# CSS, JS, Images
Allow: /core/*.css$
Allow: /core/*.css?
Allow: /core/*.js$
Allow: /core/*.js?
Allow: /core/*.gif
Allow: /core/*.jpg
Allow: /core/*.jpeg
Allow: /core/*.png
Allow: /core/*.svg
Allow: /profiles/*.css$
Allow: /profiles/*.css?
Allow: /profiles/*.js$
Allow: /profiles/*.js?
Allow: /profiles/*.gif
Allow: /profiles/*.jpg
Allow: /profiles/*.jpeg
Allow: /profiles/*.png
Allow: /profiles/*.svg
# Directories
Disallow: /core/
Disallow: /profiles/
# Files
Disallow: /README.txt
Disallow: /web.config
# Paths (clean URLs)
Disallow: /admin/
Disallow: /comment/reply/
Disallow: /filter/tips
Disallow: /node/add/
Disallow: /search/
Disallow: /user/register
Disallow: /user/password
Disallow: /user/login
Disallow: /user/logout
Disallow: /media/oembed
Disallow: /*/media/oembed
# Paths (no clean URLs)
Disallow: /index.php/admin/
Disallow: /index.php/comment/reply/
Disallow: /index.php/filter/tips
Disallow: /index.php/node/add/
Disallow: /index.php/search/
Disallow: /index.php/user/password
Disallow: /index.php/user/register
Disallow: /index.php/user/login
Disallow: /index.php/user/logout
Disallow: /index.php/media/oembed
Disallow: /index.php/*/media/oembed
Disallow: /*?sorting=
# Paths (Detainee form)
Disallow: /en/archives/info-detainee
Disallow: /fr/archives/info-detenu
# Paths (XML feed for newsroom)
Disallow: /en/xml/news-release
Disallow: /fr/xml/news-release
Disallow: /es/xml/news-release
Disallow: /ar/xml/news-release
# Non-relevant URLs with parameters
Disallow: */result?*
Allow: */result?page=
Disallow : *?amp
Disallow: *?__hstc=*
Sitemap: https://www.icrc.org/sitemap.xml
- https://www.icrc.org/sitemap.xml?page=1
- https://www.icrc.org/sitemap.xml?page=2
- https://www.icrc.org/sitemap.xml?page=3
- https://www.icrc.org/sitemap.xml?page=4
- https://www.icrc.org/sitemap.xml?page=5
- https://www.icrc.org/sitemap.xml?page=6
- https://www.icrc.org/sitemap.xml?page=7
- https://www.icrc.org/sitemap.xml?page=8
- https://www.icrc.org/sitemap.xml?page=9
- https://www.icrc.org/sitemap.xml?page=10
- https://www.icrc.org/sitemap.xml?page=11
- https://www.icrc.org/sitemap.xml?page=12
- https://www.icrc.org/sitemap.xml?page=13
- https://www.icrc.org/sitemap.xml?page=14
- https://www.icrc.org/sitemap.xml?page=15
- https://www.icrc.org/sitemap.xml?page=16
- https://www.icrc.org/sitemap.xml?page=17
AURL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: non-www
HTTP → HTTPS
Use 301 (permanent) instead of 302 (temporary)
A+HTTP Probe TimingTotal 258 ms — DNS, TCP, TLS, TTFB, content transfer breakdownPASS
Connection waterfall
Domain IntelligenceDomain intelligence data not availableINFO
RDAP and WHOIS lookup both failed