Short FAQ show

How do I use that tool?
- Insert a valid domain name, without http:// or https://, without www:
  - yourdomain.com
  If you check a domain name, non-www and www (if defined), http and https is checked.
- Add a port or / and a file and path:
  - yourdomain.com:5001
  - yourdomain.com/subfolder-of-your-domain
  - yourdomain.com/subfolder/file-to-check.html
  - yourdomain.com:5001/subfolder/file-to-check.html
- Insert a valid / public ipv4- or ipv6-address:
  - 1.1.1.1
  - 2a01:238:301b::1226
  - ipv6 with port:
    [2a01:238:301b::1226]:443
- If you check an ip address, you may add your domain name in the "hostname" field.
  That's helpful if your domain has an ipv4-address and if you want to add an ipv6-address.
  You can check your ipv6-address without having an AAAA-record in your DNS.
  Checking ip addresses no DNS-checks are done -> that's very short.
If you check a port, normally one check (http or https) is wrong. Ignore that wrong result. Typical programs use only one protocol with one port. There are some programs (Ookla Speedtest, VestaCP, WebMin) who are able to use one port with both protocols http/https.
Insert a valid Internationalized Domain Name (IDN)
- First click: The IDN is transformed to the xn-- version.
- Second click: The check starts with the xn-- version.
- The result of an IDN-check shows both versions.
Sometimes special code parts are updated. That requires, that no check is running. So new jobs are added to the Queue, but not executed. Wait some minutes.
Which Grade should I have?
- If it is your first certificate: Grade B without HSTS and without Cookie errors.
- If your certificate renew works: Grade A with HSTS. If your certificate renew really works, you may add the domain to the Google Preload list. Then browsers use always https to connect your domain. That's Grade A+.
- Short:
  Fatal:
  - Domain doesn't end with a public suffix, isn't registered, private ip addresses are defined (Z, U, Y).
  - Port 80 and port 443 must answer, no TCP-errors (V, W), Timeouts (T), Server Errors (S)
  - No global SSL error (P), http over port 443 or https over port 80 (Q)
  - All certificates are valid (no N), no misconfiguration (M), no wrong redirects (R)
  - No old/weak connection (O), no Loop (L), no different ip addresses of the same domain name with different answers (K)
  - No mixed content / missing resources, errors in svg definitions etc. (I)
  If you have one of these errors, users may have problems using your site.
  Better:
  - No http result (H)
  - Correct redirects (no F, E, D)
  - If non-www + www is defined: One destination (no C)
  - No cookie errors, all https cookies secure, SameSite-Attribute (B without warnings)
  - If HSTS is defined: No HSTS-parse errors
If you use HSTS and your certificate is invalid (wrong domain name, expired, revoked), visitors can't create an exception in their browser. So it's impossible to visit your site. HSTS requires an always valid certificate, so you shouldn't add HSTS if you don't know your certificate renew works.
But if the certificate renew works, HSTS + Preload is an amazing feature. Browsers connect your domain only via https, so it's impossible to add cookies via http.

hide

skip EDNS-Check

skip Content-Check

check links

∑

A+

Top + Preload

502

Top

1819

no HSTS, unsecure Cookies

7466

Many http status 200

4278

redir http ⇒ http

450

http ⇒ https other domain

4124

https ⇒ http

655

result http

5234

Content problems

12545

General Configuration

1442

ip addresses with diff. status

110

Loop - fatal

2040

Misconfiguration

3721

Certificate not trusted

50536

old connection

1980

Tls-Protocol error

2728

http sent over port 443

3344

redir not existing domain

605

Server error (500)

5824

Timeout

26209

Unknown - no dns / wrong IDN

8408

Connect failure

24907

wrong Web-Response

5185

DNS-problem Nameserver

27118

private IP

3857

private, tld not in PSL

2453

⁕

running jobs

⁂

Queue

error

started

2018-10-27

929 days

Domains

223.40 / day

207,543

last 24 h

Dom./Checks

327/432

Checks

339.28 / day

315,192

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/" target="_blank">Check your Website</a>

ftdj8.com	⁕
huongthaopro.com	⁕
daito-vn.com	N
manga1000.com	P
mail.aservice.com.tw	C
api.test.new.xpense.co	N
react.tuxmailer.dev	T
nimblegames.fr	C
hanksweeting.com	X
fastfield-api-dev.nutrien.com	V
secondbreakfastclub.net	V
teufard.com	N
dreamjobs.ma	A+
hassanhamdoun.com	P
hassanhamoun.com	U
skynfüd.com	H
imobiliariapreferencia.com.br	T
seccionamarillaus.com	T
wscap.dev.seccionamarilla.com	X
flixwith.com	T
emonkhan.org	U
nodxpress.com	N
cyyxieandcie.com	L
mot.gov.gh	X
apple.com	I
cmrg.dynip.sapo.pt	V
rezza.hr	N
uskoki.pl	Y
cloud.nauta.dev	V
frontprod.borisreturns.com	N

dreamjobs.ma	A+
server-daten.de	A+
contest.rmbs.org	A
remote.inovexcorp.com	A
jonin.tk	A
2602:806:a003:40e::1869:82	A
nextcloud.dsiggi.de	B
mpt.com.mm	B
habbointer.com	B
supsolit.nl	B
app.yourimpact.eu	B
talentpredix.com	B
api-stage.ezymigrate.co.nz	B
mail.vnetso.com	B
adm-api.sofyrus.com	B
start.kti.tj	B
mail.aservice.com.tw	C
nimblegames.fr	C
jdubar.fr	C
acecraftique.com	C
slabontec.com	C
telenor.com.mm	C
destasio.it	C
madv.co.il	C
avuarcustom.ru	C
arktype.net	E
lesmans.org	E
zitobox.com	E
acecraftique.co.uk	E
exactechinc.com	E

localhost	Z
localhosy	Z
localhost:8080	Z
venuecrew	Z
start.kti.pj	Z
uskoki.pl	Y
git.dd.boozallencsn.com	Y
cfmlan.com	Y
172.17.23.81:6688/hello/333	Y
frankufabicloud.net-freaks.com	Y
hanksweeting.com	X
wscap.dev.seccionamarilla.com	X
mot.gov.gh	X
terrisdraheim.com	X
wfubmqgmro.asuscomm.com	X
pddstudio.xyz	X
jsfitzwater.com	X
tuttas.ddns.net	X
championautoinsurance.com	X
boneinlayinteriorfurniture.com	X
ramramram.co.in	X
paop.xyz	X
analytics.creangel.com	X
nr1hairclinic.com	X
qualityalive2.selfip.com	X
matricula.iax.es	X
ccicloud.com	X
mpt.net.mm	X
easycoding.live	X
zavrsnirad1.club	X

Check DNS, Urls + Redirects, Certificates and Content of your Website

How do I use that tool?

Which Grade should I have?

∑

Current

Good

Worst