Check DNS, Urls + Redirects, Certificates and Content of your Website


Tls-Protocol error

17.06.2019 22:48:36

Older results

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout



No DNSSEC - Informations found

3. Name Servers

No Nameserver entries found

4. SOA-Entries

No SOA entries found

5. Screenshots

No Screenshot listed, because no url-check with https + http status 200-299, 400-599 + not-ACME-check found.

6. Url-Checks


• http://[2001:08d8:100f:f000:0000:0000:0000:028d]/

Not Found
Server: nginx
Date: Mon, 17 Jun 2019 20:48:41 GMT
Content-Type: text/html
Content-Length: 162
Connection: close

• https://[2001:08d8:100f:f000:0000:0000:0000:028d]/

SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

• http://[2001:08d8:100f:f000:0000:0000:0000:028d]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

Visible Content:
Connection: close
Server: nginx/1.10.3
Date: Mon, 17 Jun 2019 20:48:41 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY


1. General Results, most used to calculate the result

Aname "2001:8d8:100f:f000::28d" is ipv6 address, public suffix is not defined
Agood: All ip addresses are public addresses
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (1 urls)
http://[2001:08d8:100f:f000:0000:0000:0000:028d]/ 2001:8d8:100f:f000::28d

Url with incomplete Content-Type - header - missing charset
CError - no version with Http-Status 200
Hfatal error: No https - result with http-status 200, no encryption
Mhttp://[2001:08d8:100f:f000:0000:0000:0000:028d]/ 2001:8d8:100f:f000::28d

Misconfiguration - main pages should never send http status 400 - 499
Phttps://[2001:08d8:100f:f000:0000:0000:0000:028d]/ 2001:8d8:100f:f000::28d

Error creating a TLS-Connection: IANA TLS Alert No. 80, internal_error. An internal error unrelated to the peer or the correctness of the protocol (such as a memory allocation failure) makes it impossible to continue. SSL_ERROR_INTERNAL_ERROR_ALERT (Mozilla) / ERR_SSL_PROTOCOL_ERROR (Chrome)

2. DNS- and NameServer - Checks

3. Content- and Performance-critical Checks

http://[2001:08d8:100f:f000:0000:0000:0000:028d]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2001:8d8:100f:f000::28d

Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 201, 202, 203 or 204. Creating a Letsencrypt certificate via http-01 challenge can't work. A http status 301-309 (Redirect to another domain or port 80 / 443) or a http status 404 - Not Found is expected, if the test file doesn't exist. Looks like the webserver isn't configured, perhaps it's an answer of your hoster. Trouble creating a certificate? Use to ask.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual -
AInfo: Different Server-Headers found
ADuration: 3540 milliseconds, 3.540 seconds

8. Connections

No connection informations found. Perhaps only http - connections.

9. Certificates

No certificate informations found. Perhaps only http - connections.

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

2. Source - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

11. Html-Content - Entries

No Html-Content entries found. Only checked if https + status 200/401/403/404

12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address informations found. The feature is new (2020-05-07), so recheck this domain.

13. CAA - Entries

No CAA entries found

14. TXT - Entries

No TXT entries found

15. DomainService - Entries (SSHFP Check is new - 2022-09-24, may be incomplete, alpha, some results are required)

No DomainServiceEntries entries found

16. Cipher Suites

No Ciphers found

17. Portchecks

No Port informations found. The feature is new (startet 2019-07-09), so recheck this domain.


Last Result: - 2019-06-17 22:48:36

Do you like this page? Support this tool, add a link on your page:

<a href="" target="_blank">Check this Site: [2001:8d8:100f:f000::28d]</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro