Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BCrawlabilityrobots.txt present, sitemap with 0 URLsREVIEW
Search engines may not be able to parse the sitemap. Fix XML validation errors.
An unparseable sitemap is silently ignored by Google — the URLs it advertises are never queued for crawl.
Learn more ▾ ▴
Google's sitemap parser is strict about XML validity. A single unescaped `&` or unclosed tag invalidates the whole file. Run your sitemap through a validator (Search Console's Sitemaps report flags it) and fix the offending entry. Most generators escape correctly; mistakes usually come from manually-written entries.
Source: sitemaps.org / Google Search Central
An empty sitemap provides no value. Add <url> entries for your pages.
An empty sitemap signals 'no content to index' to Google — actively harmful versus having no sitemap at all.
Learn more ▾ ▴
Google compares URLs in the sitemap against URLs it has crawled. An empty sitemap on a site with thousands of pages signals abandonment. Either populate it correctly (most CMSes auto-generate) or delete the file and let Google crawl normally.
Source: Google Search Central / sitemaps.org
# Allow everything
User-agent: *
Disallow: /search?
Disallow: /reset?
Disallow: /confirm?
Disallow: /confirmDelete?
# Allow /recommend deny /username/recommend
Disallow: ^/*/recommend
Disallow: */add-card?
Disallow: */login?
Disallow: */signup?
Disallow: /forgot$
Disallow: /statement/
Disallow: /boardinvited/
Disallow: /invite/
Disallow: /organizationinvited/
Disallow: /boardInviteDeclined/
Disallow: /organizationInviteDeclined/
Disallow: /associate/
Disallow: /not-supported.html
Disallow: /static/
Disallow: /1/
Disallow: /c/
Disallow: /b/
Disallow: /u/
Disallow: /w/
Allow: /
Sitemap: https://trello.com/sitemap-index.xml.gz
BURL Variantswww/non-www, trailing slash, HTTP→HTTPSREVIEW
www / non-www
Inconsistent — duplicate content risk
HTTP → HTTPS
Consistent
BTLS Certificate Expiry & Recommendations184 days until leaf cert expires — 2 issues to addressREVIEW
Certificate validity
Recommended actions
- Add includeSubDomains to the HSTS directive
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
ADNS Records4 A records, 38 ms lookupPASS
| A | 3.165.190.118, 3.165.190.56, 3.165.190.129, 3.165.190.47 |
| AAAA | — |
| CNAME | trello.com |
| NS | ns-1442.awsdns-52.org, ns-402.awsdns-50.com, ns-722.awsdns-26.net, ns-2013.awsdns-59.co.uk |
| MX | 10 mxb-001d9801.gslb.pphosted.com 10 mxa-001d9801.gslb.pphosted.com |
| TXT | SPF v=spf1 include:_spf.google.com include:_spf.salesforce.com include:spemail.trell... google-site-verification=j10V2FxDCOpk-ZtvXbt0csUYbGo4uttk0VIeNN3pMwQ google-site-verification=L1Pv1rpciXhbLcwV1z84F6fdeNpGMIDd4nrgAzCQncc google-site-verification=UqQbR3bkx0DW0mTjn4zpy-pFaTOtklFFLgVJPLpWBfg google-site-verification=klLlb7yZqSKsDzIEQ_Ck9G8vJZrZUYSl7G6SYm5ugaU google-site-verification=lFRc2QYcvrD1x-JP-sbqyEHEVFTzLiYr_s5TMwqDPGE atlassian-domain-verification=ZRphniOpyvhHV76mRmxnLkHJVrKnbeOIxmhbxb8PF6AarX0Fyp... google-site-verification=XiTuMrGYNDAcJ3h6FgJn-qK1wWhcRCTrwK7ihP4lgzQ facebook-domain-verification=5g7n6qixu6oqonzuw4igcyn2fd52yi google-site-verification=m3SBLzut__3UbFT85xIcXyZs4CsOKfX6MrdByMh6xSM mailru-verification: 26cd15930108c82c slack-domain-verification=IQyaWt1Bt2nVwCvOsgj2ObAap344ynM5bV6C8zlZ |
| CAA | Lookup not available with standard resolver |
A CNAME at the zone apex can break MX and NS records. Use ALIAS/ANAME or A records instead.
CNAME at the apex (example.com) breaks every other apex record (MX, TXT, NS) — DNS-protocol violation per RFC 1034.
Learn more ▾ ▴
RFC 1034 forbids CNAME alongside other records at the same name. Some DNS providers offer ALIAS / ANAME / flattened-CNAME records that work around this — use those instead. Otherwise apex-level CNAME breaks email (no MX), domain ownership verification (no TXT), and more.
Source: RFC 1034
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 249 ms totalPASS
https://www.trello.com
140 ms · HTTP/1.1
https://trello.com/
109 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://www.trello.com | 301 | 140 ms | HTTP/1.1 | AtlassianEdge |
| 2 | https://trello.com/ | 200 | 109 ms | HTTP/1.1 | AtlassianEdge |
See the visual redirect chain in the HTTP Probe tab →
A+Domain Intelligencetrello.com — via MarkMonitor Inc., 21 years, 11 months old, hosted on AWSPASS
324 days
June 1, 2027
184 days
Issued by Amazon
21 years, 11 months
Registered August 20, 2004
Enabled
Protects against DNS spoofing
AWS
ASN AS16509
3.165.190.56
MarkMonitor Inc.