Check DNS, Urls + Redirects, Certificates and Content of your Website


Info: Problems with 3.048.289 Letsencrypt certificates (378.325 accounts). They must be revoked (revocation starts 2020-03-04 20:00 UTC) - see Revoking certain certificates on March 4. Update 2020-03-07: Good news: Mass-revocation is canceled.

This tool: A check (SerialNumber) is added. Letsencrypt has published a list of critical SerialNumbers, this list is checked. See the part "9. Certificates". If there is a warning, renew that certificate and replace the current certificate.




X

DNS-problem - authoritative Nameserver refused, not defined or timeout

Checked:
07.04.2020 14:51:06


Older results


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
cloudfrost.duckdns.org
A
70.92.101.94
Henderson/Kentucky/United States (US) - Charter Communications
Hostname: mta-70-92-101-94.mi.rr.com
yes
1
0

AAAA

yes


www.cloudfrost.duckdns.org
A
70.92.101.94
Henderson/Kentucky/United States (US) - Charter Communications
Hostname: mta-70-92-101-94.mi.rr.com
yes
1
0

AAAA

yes



2. DNSSEC

Info: The Xml-split has triggered some hidden bugs. Now it looks ok.
If root or the top level zone isn't validated, it's buggy.
Both green and your domain is red -> it's your domain.

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



Status: Valid because published



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 33853, Flags 256



Public Key with Algorithm 8, KeyTag 48903, Flags 256



1 RRSIG RR to validate DNSKEY RR found



Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.04.2020, 00:00:00 +, Signature-Inception: 01.04.2020, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: org
org
2 DS RR in the parent zone found



1 RRSIG RR to validate DS RR found



Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 20.04.2020, 05:00:00 +, Signature-Inception: 07.04.2020, 04:00:00 +, KeyTag 48903, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 48903 used to validate the DS RRSet in the parent zone



4 DNSKEY RR found



Public Key with Algorithm 7, KeyTag 9795, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 7, KeyTag 17883, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 7, KeyTag 33209, Flags 256



Public Key with Algorithm 7, KeyTag 37022, Flags 256



3 RRSIG RR to validate DNSKEY RR found



Algorithm: 7, 1 Labels, original TTL: 900 sec, Signature-expiration: 22.04.2020, 15:30:14 +, Signature-Inception: 01.04.2020, 14:30:14 +, KeyTag 9795, Signer-Name: org



Algorithm: 7, 1 Labels, original TTL: 900 sec, Signature-expiration: 22.04.2020, 15:30:14 +, Signature-Inception: 01.04.2020, 14:30:14 +, KeyTag 17883, Signer-Name: org



Algorithm: 7, 1 Labels, original TTL: 900 sec, Signature-expiration: 22.04.2020, 15:30:14 +, Signature-Inception: 01.04.2020, 14:30:14 +, KeyTag 37022, Signer-Name: org



Status: Good - Algorithmus 7 and DNSKEY with KeyTag 9795 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 7 and DNSKEY with KeyTag 17883 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 7 and DNSKEY with KeyTag 37022 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 7, KeyTag 9795, DigestType 1 and Digest "Nk36s9ryVMq0d7VnWxB2bdqiSYI=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Status: Valid Chain of trust. Parent-DS with Algorithm 7, KeyTag 9795, DigestType 2 and Digest "OSKzG286TqkrGet7UhIPAx/Y4F/wsDuvz5+JG/5/+OU=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: duckdns.org
duckdns.org
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed domain name between the hashed NSEC3-owner and the hashed NextOwner. So the parent zone confirmes the non-existence of a DS RR.Bitmap: NS, DS, RRSIG



0 DNSKEY RR found





Zone: cloudfrost.duckdns.org
cloudfrost.duckdns.org
0 DS RR in the parent zone found



0 DNSKEY RR found





Zone: www.cloudfrost.duckdns.org
www.cloudfrost.duckdns.org
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.cloudfrost.duckdns.org
U  ns1.duckdns.org


U  ns2.duckdns.org


U  ns3.duckdns.org

cloudfrost.duckdns.org
U  ns1.duckdns.org
54.187.92.222
Portland/Oregon/United States (US) - Amazon.com, Inc.


U  ns2.duckdns.org
54.191.117.119
Portland/Oregon/United States (US) - Amazon.com, Inc.


U  ns3.duckdns.org
52.26.169.94
Portland/Oregon/United States (US) - Amazon.com, Inc.

duckdns.org
U  ns1.duckdns.org


U  ns2.duckdns.org


U  ns3.duckdns.org

org
  a0.org.afilias-nst.info / ns000b.app18.ams2.afilias-nst.info


  a2.org.afilias-nst.info / 2.fra.pch


  b0.org.afilias-nst.org / ns000b.app26.ams2.afilias-nst.info


  b2.org.afilias-nst.org / 5.fra.pch


  c0.org.afilias-nst.info / app3.iad1.hosts.meta.redstone.afilias-nst.info-2


  d0.org.afilias-nst.org / ns000a.app1.ams2.afilias-nst.info


4. SOA-Entries


Domain:org
Zone-Name:
Primary:a0.org.afilias-nst.info
Mail:noc.afilias-nst.info
Serial:2013885734
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:6


Domain:duckdns.org
Zone-Name:
Primary:ns1.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:duckdns.org
Zone-Name:
Primary:ns2.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:duckdns.org
Zone-Name:
Primary:ns3.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:cloudfrost.duckdns.org
Zone-Name:
Primary:ns1.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:cloudfrost.duckdns.org
Zone-Name:
Primary:ns2.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:cloudfrost.duckdns.org
Zone-Name:
Primary:ns3.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:www.cloudfrost.duckdns.org
Zone-Name:
Primary:ns1.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:www.cloudfrost.duckdns.org
Zone-Name:
Primary:ns2.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


Domain:www.cloudfrost.duckdns.org
Zone-Name:
Primary:ns3.duckdns.org
Mail:hostmaster.duckdns.org
Serial:2019170803
Refresh:6000
Retry:120
Expire:2419200
TTL:600
num Entries:1


5. Screenshots

Startaddress: https://cloudfrost.duckdns.org, address used: https://cloudfrost.duckdns.org/, Screenshot created 2020-04-07 14:54:13 +00:0 url is insecure, certificate invalid

Mobil (412px x 732px)

706 milliseconds

Screenshot mobile - https://cloudfrost.duckdns.org/
Mobil + Landscape (732px x 412px)

686 milliseconds

Screenshot mobile landscape - https://cloudfrost.duckdns.org/
Screen (1280px x 1680px)

1249 milliseconds

Screenshot Desktop - https://cloudfrost.duckdns.org/

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.2, ECDHE_RSA with P-256, and AES_256_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://cloudfrost.duckdns.org/
70.92.101.94
301
https://cloudfrost.duckdns.org/
Html is minified: 109.46 %
0.300
A
Server: nginx
Date: Tue, 07 Apr 2020 12:53:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://cloudfrost.duckdns.org/
X-Frame-Options: SAMEORIGIN

• http://www.cloudfrost.duckdns.org/
70.92.101.94
301
https://www.cloudfrost.duckdns.org/
Html is minified: 109.46 %
0.310
A
Server: nginx
Date: Tue, 07 Apr 2020 12:53:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://www.cloudfrost.duckdns.org/
X-Frame-Options: SAMEORIGIN

• https://cloudfrost.duckdns.org/
70.92.101.94 GZip used - 3045 / 7522 - 59.52 %
Inline-JavaScript (∑/total): 3/243 Inline-CSS (∑/total): 0/0
200

Html is minified: 105.50 %
4.170
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 245)
pfSense Logo Potential DNS Rebind attack detected, see http://en.wikipedia.org/wiki/DNS_rebinding Try accessing the router by IP address instead of by hostname. pfSense is developed and maintained by Netgate. © ESF 2004 - 2020 View license.
Server: nginx
Date: Tue, 07 Apr 2020 12:53:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 07 Apr 2020 12:53:37 GMT
Set-Cookie: PHPSESSID=942d67495632dc89634a01827ed7abee; Path=/; Domain=cloudfrost.duckdns.org
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip

• https://www.cloudfrost.duckdns.org/
70.92.101.94 GZip used - 3049 / 7522 - 59.47 %
Inline-JavaScript (∑/total): 3/243 Inline-CSS (∑/total): 0/0
200

Html is minified: 105.50 %
4.174
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 245)
pfSense Logo Potential DNS Rebind attack detected, see http://en.wikipedia.org/wiki/DNS_rebinding Try accessing the router by IP address instead of by hostname. pfSense is developed and maintained by Netgate. © ESF 2004 - 2020 View license.
Server: nginx
Date: Tue, 07 Apr 2020 12:53:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 07 Apr 2020 12:53:41 GMT
Set-Cookie: PHPSESSID=6aa507af7f93fc9b19a5020eb732e1b7; Path=/; Domain=www.cloudfrost.duckdns.org
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip

• http://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
70.92.101.94
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 109.46 %
0.293
A
Visible Content: 301 Moved Permanently nginx
Server: nginx
Date: Tue, 07 Apr 2020 12:53:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Frame-Options: SAMEORIGIN

• http://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
70.92.101.94
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 109.46 %
0.296
A
Visible Content: 301 Moved Permanently nginx
Server: nginx
Date: Tue, 07 Apr 2020 12:53:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Frame-Options: SAMEORIGIN

• https://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
GZip used - 107 / 146 - 26.71 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 110.61 %
4.197
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Visible Content: 404 Not Found nginx
Server: nginx
Date: Tue, 07 Apr 2020 12:53:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip

• https://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
GZip used - 107 / 146 - 26.71 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 110.61 %
4.193
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Visible Content: 404 Not Found nginx
Server: nginx
Date: Tue, 07 Apr 2020 12:53:51 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip

7. Comments


1. General Results, most used to calculate the result

Aname "cloudfrost.duckdns.org" is domain, public suffix is "duckdns.org", top-level-domain-type is "generic", tld-manager is "Public Interest Registry (PIR)"
Agood: All ip addresses are public addresses
Agood: destination is https
Agood: every https has a Strict Transport Security Header
Agood: HSTS max-age is long enough, 31536000 seconds = 365 days
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):2 complete Content-Type - header (4 urls)
https://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de


Url with incomplete Content-Type - header - missing charset
https://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de


Url with incomplete Content-Type - header - missing charset
Ahttp://cloudfrost.duckdns.org/ 70.92.101.94
301
https://cloudfrost.duckdns.org/
correct redirect http - https with the same domain name
Ahttp://www.cloudfrost.duckdns.org/ 70.92.101.94
301
https://www.cloudfrost.duckdns.org/
correct redirect http - https with the same domain name
Bhttps://cloudfrost.duckdns.org/ 70.92.101.94
200
PHPSESSID=942d67495632dc89634a01827ed7abee; Path=/; Domain=cloudfrost.duckdns.org
Cookie sent via https, but not marked as secure
Bhttps://www.cloudfrost.duckdns.org/ 70.92.101.94
200
PHPSESSID=6aa507af7f93fc9b19a5020eb732e1b7; Path=/; Domain=www.cloudfrost.duckdns.org
Cookie sent via https, but not marked as secure
CError - no preferred version www or non-www. Select one version as preferred version, then add a redirect https + not-preferred version to https + preferred version. Perhaps in your port 443 vHost something like "RewriteEngine on" + "RewriteCond %{SERVER_NAME} = example.com" + "ReWriteRule ^ https://www.example.com%{REQUEST_URI} [END,QSA,R=permanent]" (three rows, without the "). That should create a redirect https + example.com ⇒ https + www.example.com. Or switch both values to use the non-www version as your preferred version.
CError - more then one version with Http-Status 200. After all redirects, all users (and search engines) should see the same https url: Non-www or www, but not both with http status 200.
Nhttps://cloudfrost.duckdns.org/ 70.92.101.94
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://www.cloudfrost.duckdns.org/ 70.92.101.94
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
XFatal error: Nameserver isn't defined or has timeout
XFatal error: Nameserver doesn't support TCP connection: ns1.duckdns.org: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 54.187.92.222:53
XFatal error: Nameserver doesn't support TCP connection: ns1.duckdns.org / 54.187.92.222: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 54.187.92.222:53
XFatal error: Nameserver doesn't support TCP connection: ns2.duckdns.org: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 54.191.117.119:53
XFatal error: Nameserver doesn't support TCP connection: ns2.duckdns.org / 54.191.117.119: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 54.191.117.119:53
XFatal error: Nameserver doesn't support TCP connection: ns3.duckdns.org: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 52.26.169.94:53
XFatal error: Nameserver doesn't support TCP connection: ns3.duckdns.org / 52.26.169.94: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte 52.26.169.94:53

2. DNS- and NameServer - Checks

AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns1.duckdns.org,ns2.duckdns.org,ns3.duckdns.org
AGood: Nameserver supports Echo Capitalization: 3 good Nameserver
XNameserver Timeout checking Echo Capitalization: ns3.duckdns.org
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 3 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns1.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.duckdns.org / 54.187.92.222: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.duckdns.org / 54.191.117.119: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns3.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns3.duckdns.org: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns3.duckdns.org / 52.26.169.94: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok. COOKIE: ok. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://cloudfrost.duckdns.org/ 70.92.101.94
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.cloudfrost.duckdns.org/ 70.92.101.94
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
AGood: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
Warning: CSS / JavaScript found without GZip support. Send these ressources with GZip. 2 external CSS / JavaScript files without GZip found - 4 with GZip, 6 complete
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 6 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 6 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
4.197 seconds
Warning: 404 needs more then one second
https://www.cloudfrost.duckdns.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
4.193 seconds
Warning: 404 needs more then one second
ADuration: 191290 milliseconds, 191.290 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
cloudfrost.duckdns.org
70.92.101.94
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
cloudfrost.duckdns.org
70.92.101.94
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=pfsense.asgard, L=Evansville, C=US, ST=Indiana

2CN=pfsense SSL CA, L=Evansville, C=US, ST=Indiana


www.cloudfrost.duckdns.org
70.92.101.94
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

www.cloudfrost.duckdns.org
70.92.101.94
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=pfsense.asgard, L=Evansville, C=US, ST=Indiana

2CN=pfsense SSL CA, L=Evansville, C=US, ST=Indiana


cloudfrost.duckdns.org
cloudfrost.duckdns.org
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

cloudfrost.duckdns.org
cloudfrost.duckdns.org
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=pfsense.asgard, L=Evansville, C=US, ST=Indiana

2CN=pfsense SSL CA, L=Evansville, C=US, ST=Indiana


www.cloudfrost.duckdns.org
www.cloudfrost.duckdns.org
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

www.cloudfrost.duckdns.org
www.cloudfrost.duckdns.org
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=pfsense.asgard, L=Evansville, C=US, ST=Indiana

2CN=pfsense SSL CA, L=Evansville, C=US, ST=Indiana


9. Certificates

1.
1.
L=Evansville, S=Indiana, C=US, CN=pfsense.asgard
04.04.2020
11.03.2120
expires in 36442 days
pfsense.asgard, 10.2.20.1 - 2 entries
1.
1.
L=Evansville, S=Indiana, C=US, CN=pfsense.asgard
04.04.2020

11.03.2120
expires in 36442 days
pfsense.asgard, 10.2.20.1 - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:02
Thumbprint:92A8B612E7846A3D2DBAC29D2666FD071814A5E4
SHA256 / Certificate:9xbEPhYM95H7+HPk9ehh21M+7KF9ztPDJsxfpkgL2GQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):7651f0d5f1d9278133233e03793a089f38d65b0fbda9cff760a4785a454ba90f
SHA256 hex / Subject Public Key Information (SPKI):0c175dff0db96a56c4200e013a1f3aa5639cd855e11c3e46f63d8715080fdce0
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no

RevocationStatusUnknown: The revocation function was unable to check revocation for the certificate.
OfflineRevocation: The revocation function was unable to check revocation because the revocation server was offline.

2.
L=Evansville, S=Indiana, C=US, CN=pfsense SSL CA
04.04.2020
11.03.2120
expires in 36442 days


2.
L=Evansville, S=Indiana, C=US, CN=pfsense SSL CA
04.04.2020

11.03.2120
expires in 36442 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00
Thumbprint:98239CDA6F2B3A0D9F2D11E28AF61DEEDC17339A
SHA256 / Certificate:Seid+3J0jvA2OyrrILy5d8+fANSxKtL/HlAbSPEiurA=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):fcd1707a37205d3324a8dabf77e3a8a15bc057112337949acdc59193f55277a6
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
5
5

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1536402493
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-04-02 12:39:29
2020-07-01 12:39:29
cloudfrost.duckdns.org - 1 entries


1521983186
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-26 19:00:19
2020-06-24 19:00:19
cloudfrost.duckdns.org - 1 entries


1521737996
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-26 16:28:03
2020-06-24 16:28:03
cloudfrost.duckdns.org - 1 entries


1512621731
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-22 23:11:44
2020-06-20 23:11:44
cloudfrost.duckdns.org - 1 entries


1484331313
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-08 18:20:25
2020-06-06 18:20:25
cloudfrost.duckdns.org - 1 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0 /0 new
7
7

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
2674880784
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-04-06 18:51:39
2020-07-05 18:51:39
cloudfrost.duckdns.org, hendersonky.duckdns.org
2 entries


2674878972
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-04-06 18:50:52
2020-07-05 18:50:52
cloudfrost.duckdns.org, hendersonky.duckdns.org
2 entries


2660829309
precert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-04-02 10:39:29
2020-07-01 10:39:29
cloudfrost.duckdns.org
1 entries


2632232663
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-26 18:00:19
2020-06-24 17:00:19
cloudfrost.duckdns.org
1 entries


2631876563
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-26 15:28:03
2020-06-24 14:28:03
cloudfrost.duckdns.org
1 entries


2613738681
precert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-22 22:11:44
2020-06-20 21:11:44
cloudfrost.duckdns.org
1 entries


2567039735
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-03-08 17:20:25
2020-06-06 16:20:25
cloudfrost.duckdns.org
1 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://cloudfrost.duckdns.org/
70.92.101.94
a

4

0


0
0
0


link
stylesheet
2

0
2
0
0
0
0


meta
other
1

0


0
0
0


script

1
7,313 Bytes
0
1
0
0
0
0

https://www.cloudfrost.duckdns.org/
70.92.101.94
a

4

0


0
0
0


link
stylesheet
2

0
2
0
0
0
0


meta
other
1

0


0
0
0


script

1
7,313 Bytes
0
1
0
0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://cloudfrost.duckdns.org/
70.92.101.94
a

https://netgate.com


1
ok








a

https://pfsense.org


1
ok








a

https://pfsense.org/license


1
ok








a

index.php?logout


1
ok








link
stylesheet
/css/login.css?v=1580510450
200

1
ok
text/css, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 1077/2863 Bytes




local SRI possible, possible hash-values:

sha256-szb0rHbhq94NBXAPo/cdEDyuQ7DMv+0Pr3zijM+afWc=
sha384-+lFLS3vzQdShcfnetyZS/FP3VhfLe+c3/e0L+IJNLluPcfm0WsZjwc9QPzZjzW66
sha512-GXnWct7tRMGCizYMBeWto8t27RgRULffygLzeAfwxoDF3qoGIYFMUDzZpxMEaCFosal3PiJcfp805RVjmwWnjA==

<link rel="stylesheet" href="/css/login.css?v=1580510450" crossorigin="anonymous" integrity="sha256-szb0rHbhq94NBXAPo/cdEDyuQ7DMv+0Pr3zijM+afWc=" />



Content loaded via url("...")

/css/logo.css1

link
stylesheet
/vendor/bootstrap/css/bootstrap.min.css
200

1
ok
text/css, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 24505/117305 Bytes




local SRI possible, possible hash-values:

sha256-8EtRe6XWoFEEhWiaPkLawAD1FkD9cbmGgEy6F46uQqU=
sha384-604wwakM23pEysLJAhja8Lm42IIwYrJ0dEAqzFsj9pJ/P5buiujjywArgPCi8eoz
sha512-/5KWJw2mvMO2ZM5fndVxUQmpVPqaxZyYRTMrXtrprsyQ2zM0o0NMjU02I8ZJXeBPtrmrPO4IAyCCRsydG0BJoQ==

<link rel="stylesheet" href="/vendor/bootstrap/css/bootstrap.min.css" crossorigin="anonymous" integrity="sha256-8EtRe6XWoFEEhWiaPkLawAD1FkD9cbmGgEy6F46uQqU=" />



Content loaded via url("...")

../fonts/glyphicons-halflings-regular.eot1
../fonts/glyphicons-halflings-regular.eot?#iefix1
../fonts/glyphicons-halflings-regular.svg#glyphicons_halflingsregular1
../fonts/glyphicons-halflings-regular.ttf1
../fonts/glyphicons-halflings-regular.woff1
../fonts/glyphicons-halflings-regular.woff21

meta
viewport
width=device-width, initial-scale=1


1
ok








script
src
/csrf/csrf-magic.js
200

1
ok
Missing defer / async attribute. application/javascript, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip required: 7313 Bytes




local SRI possible, possible hash-values:

sha256-XXdW55zEC2YM7x88/n6DZWf48Klhk+6CmGigWIxMy78=
sha384-qGWsOTauXN0aHVoTHE2xi3nseY8H/ZMWZQi/022sHUNxnsQI8a7r7lLBa/SBCXx8
sha512-iEopM9dgNFytAML1TibEMWGRk25z/7gFrqcnGmL6wo8dsDjlFt322HqWScwDvKIWbtTUpqQocTXHjKBa+iSmMQ==

<script src="/csrf/csrf-magic.js" crossorigin="anonymous" integrity="sha256-XXdW55zEC2YM7x88/n6DZWf48Klhk+6CmGigWIxMy78=" />



https://www.cloudfrost.duckdns.org/
70.92.101.94
a

https://netgate.com


1
ok








a

https://pfsense.org


1
ok








a

https://pfsense.org/license


1
ok








a

index.php?logout


1
ok








link
stylesheet
/css/login.css?v=1580510450
200

1
ok
text/css, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 1077/2863 Bytes




local SRI possible, possible hash-values:

sha256-szb0rHbhq94NBXAPo/cdEDyuQ7DMv+0Pr3zijM+afWc=
sha384-+lFLS3vzQdShcfnetyZS/FP3VhfLe+c3/e0L+IJNLluPcfm0WsZjwc9QPzZjzW66
sha512-GXnWct7tRMGCizYMBeWto8t27RgRULffygLzeAfwxoDF3qoGIYFMUDzZpxMEaCFosal3PiJcfp805RVjmwWnjA==

<link rel="stylesheet" href="/css/login.css?v=1580510450" crossorigin="anonymous" integrity="sha256-szb0rHbhq94NBXAPo/cdEDyuQ7DMv+0Pr3zijM+afWc=" />



Content loaded via url("...")

/css/logo.css1

link
stylesheet
/vendor/bootstrap/css/bootstrap.min.css
200

1
ok
text/css, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 24505/117305 Bytes




local SRI possible, possible hash-values:

sha256-8EtRe6XWoFEEhWiaPkLawAD1FkD9cbmGgEy6F46uQqU=
sha384-604wwakM23pEysLJAhja8Lm42IIwYrJ0dEAqzFsj9pJ/P5buiujjywArgPCi8eoz
sha512-/5KWJw2mvMO2ZM5fndVxUQmpVPqaxZyYRTMrXtrprsyQ2zM0o0NMjU02I8ZJXeBPtrmrPO4IAyCCRsydG0BJoQ==

<link rel="stylesheet" href="/vendor/bootstrap/css/bootstrap.min.css" crossorigin="anonymous" integrity="sha256-8EtRe6XWoFEEhWiaPkLawAD1FkD9cbmGgEy6F46uQqU=" />



Content loaded via url("...")

../fonts/glyphicons-halflings-regular.eot1
../fonts/glyphicons-halflings-regular.eot?#iefix1
../fonts/glyphicons-halflings-regular.svg#glyphicons_halflingsregular1
../fonts/glyphicons-halflings-regular.ttf1
../fonts/glyphicons-halflings-regular.woff1
../fonts/glyphicons-halflings-regular.woff21

meta
viewport
width=device-width, initial-scale=1


1
ok








script
src
/csrf/csrf-magic.js
200

1
ok
Missing defer / async attribute. application/javascript, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip required: 7313 Bytes




local SRI possible, possible hash-values:

sha256-XXdW55zEC2YM7x88/n6DZWf48Klhk+6CmGigWIxMy78=
sha384-qGWsOTauXN0aHVoTHE2xi3nseY8H/ZMWZQi/022sHUNxnsQI8a7r7lLBa/SBCXx8
sha512-iEopM9dgNFytAML1TibEMWGRk25z/7gFrqcnGmL6wo8dsDjlFt322HqWScwDvKIWbtTUpqQocTXHjKBa+iSmMQ==

<script src="/csrf/csrf-magic.js" crossorigin="anonymous" integrity="sha256-XXdW55zEC2YM7x88/n6DZWf48Klhk+6CmGigWIxMy78=" />




12. Nameserver - IP-Adresses (alpha)

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address informations found. The feature is new (2020-05-07), so recheck this domain.


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.cloudfrost.duckdns.org



1
0
cloudfrost.duckdns.org



1
0
duckdns.org
0

no CAA entry found
1
0
org
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
cloudfrost.duckdns.org

ok
1
0
www.cloudfrost.duckdns.org

ok
1
0
_acme-challenge.cloudfrost.duckdns.org

missing entry or wrong length
1
0
_acme-challenge.www.cloudfrost.duckdns.org

missing entry or wrong length
1
0
_acme-challenge.cloudfrost.duckdns.org.cloudfrost.duckdns.org

perhaps wrong
1
0
_acme-challenge.www.cloudfrost.duckdns.org.cloudfrost.duckdns.org

perhaps wrong
1
0
_acme-challenge.www.cloudfrost.duckdns.org.www.cloudfrost.duckdns.org

perhaps wrong
1
0


15. Portchecks

Domain or IPPortDescriptionResultAnswer
cloudfrost.duckdns.org
21
FTP
open
550 No connections allowed from your IP

cloudfrost.duckdns.org
21
FTP
open
550 No connections allowed from your IP

cloudfrost.duckdns.org
22
SSH



cloudfrost.duckdns.org
22
SSH



cloudfrost.duckdns.org
25
SMTP



cloudfrost.duckdns.org
25
SMTP



cloudfrost.duckdns.org
53
DNS
open


cloudfrost.duckdns.org
53
DNS
open


cloudfrost.duckdns.org
110
POP3



cloudfrost.duckdns.org
110
POP3



cloudfrost.duckdns.org
143
IMAP



cloudfrost.duckdns.org
143
IMAP



cloudfrost.duckdns.org
465
SMTP (encrypted)



cloudfrost.duckdns.org
465
SMTP (encrypted)



cloudfrost.duckdns.org
587
SMTP (encrypted, submission)



cloudfrost.duckdns.org
587
SMTP (encrypted, submission)



cloudfrost.duckdns.org
993
IMAP (encrypted)



cloudfrost.duckdns.org
993
IMAP (encrypted)



cloudfrost.duckdns.org
995
POP3 (encrypted)



cloudfrost.duckdns.org
995
POP3 (encrypted)



cloudfrost.duckdns.org
1433
MS SQL



cloudfrost.duckdns.org
1433
MS SQL



cloudfrost.duckdns.org
2082
cPanel (http)



cloudfrost.duckdns.org
2082
cPanel (http)



cloudfrost.duckdns.org
2083
cPanel (https)



cloudfrost.duckdns.org
2083
cPanel (https)



cloudfrost.duckdns.org
2086
WHM (http)



cloudfrost.duckdns.org
2086
WHM (http)



cloudfrost.duckdns.org
2087
WHM (https)



cloudfrost.duckdns.org
2087
WHM (https)



cloudfrost.duckdns.org
2089
cPanel Licensing



cloudfrost.duckdns.org
2089
cPanel Licensing



cloudfrost.duckdns.org
2095
cPanel Webmail (http)



cloudfrost.duckdns.org
2095
cPanel Webmail (http)



cloudfrost.duckdns.org
2096
cPanel Webmail (https)



cloudfrost.duckdns.org
2096
cPanel Webmail (https)



cloudfrost.duckdns.org
2222
DirectAdmin (http)



cloudfrost.duckdns.org
2222
DirectAdmin (http)



cloudfrost.duckdns.org
2222
DirectAdmin (https)



cloudfrost.duckdns.org
2222
DirectAdmin (https)



cloudfrost.duckdns.org
3306
mySql



cloudfrost.duckdns.org
3306
mySql



cloudfrost.duckdns.org
5224
Plesk Licensing



cloudfrost.duckdns.org
5224
Plesk Licensing



cloudfrost.duckdns.org
5432
PostgreSQL



cloudfrost.duckdns.org
5432
PostgreSQL



cloudfrost.duckdns.org
8080
Ookla Speedtest (http)



cloudfrost.duckdns.org
8080
Ookla Speedtest (http)



cloudfrost.duckdns.org
8080
Ookla Speedtest (https)



cloudfrost.duckdns.org
8080
Ookla Speedtest (https)



cloudfrost.duckdns.org
8083
VestaCP http



cloudfrost.duckdns.org
8083
VestaCP http



cloudfrost.duckdns.org
8083
VestaCP https



cloudfrost.duckdns.org
8083
VestaCP https



cloudfrost.duckdns.org
8443
Plesk Administration (https)



cloudfrost.duckdns.org
8443
Plesk Administration (https)



cloudfrost.duckdns.org
8447
Plesk Installer + Updates



cloudfrost.duckdns.org
8447
Plesk Installer + Updates



cloudfrost.duckdns.org
8880
Plesk Administration (http)



cloudfrost.duckdns.org
8880
Plesk Administration (http)



cloudfrost.duckdns.org
10000
Webmin (http)



cloudfrost.duckdns.org
10000
Webmin (http)



cloudfrost.duckdns.org
10000
Webmin (https)



cloudfrost.duckdns.org
10000
Webmin (https)



www.cloudfrost.duckdns.org
21
FTP
open
550 No connections allowed from your IP

www.cloudfrost.duckdns.org
21
FTP
open
550 No connections allowed from your IP

www.cloudfrost.duckdns.org
22
SSH



www.cloudfrost.duckdns.org
22
SSH



www.cloudfrost.duckdns.org
25
SMTP



www.cloudfrost.duckdns.org
25
SMTP



www.cloudfrost.duckdns.org
53
DNS
open


www.cloudfrost.duckdns.org
53
DNS
open


www.cloudfrost.duckdns.org
110
POP3



www.cloudfrost.duckdns.org
110
POP3



www.cloudfrost.duckdns.org
143
IMAP



www.cloudfrost.duckdns.org
143
IMAP



www.cloudfrost.duckdns.org
465
SMTP (encrypted)



www.cloudfrost.duckdns.org
465
SMTP (encrypted)



www.cloudfrost.duckdns.org
587
SMTP (encrypted, submission)



www.cloudfrost.duckdns.org
587
SMTP (encrypted, submission)



www.cloudfrost.duckdns.org
993
IMAP (encrypted)



www.cloudfrost.duckdns.org
993
IMAP (encrypted)



www.cloudfrost.duckdns.org
995
POP3 (encrypted)



www.cloudfrost.duckdns.org
995
POP3 (encrypted)



www.cloudfrost.duckdns.org
1433
MS SQL



www.cloudfrost.duckdns.org
1433
MS SQL



www.cloudfrost.duckdns.org
2082
cPanel (http)



www.cloudfrost.duckdns.org
2082
cPanel (http)



www.cloudfrost.duckdns.org
2083
cPanel (https)



www.cloudfrost.duckdns.org
2083
cPanel (https)



www.cloudfrost.duckdns.org
2086
WHM (http)



www.cloudfrost.duckdns.org
2086
WHM (http)



www.cloudfrost.duckdns.org
2087
WHM (https)



www.cloudfrost.duckdns.org
2087
WHM (https)



www.cloudfrost.duckdns.org
2089
cPanel Licensing



www.cloudfrost.duckdns.org
2089
cPanel Licensing



www.cloudfrost.duckdns.org
2095
cPanel Webmail (http)



www.cloudfrost.duckdns.org
2095
cPanel Webmail (http)



www.cloudfrost.duckdns.org
2096
cPanel Webmail (https)



www.cloudfrost.duckdns.org
2096
cPanel Webmail (https)



www.cloudfrost.duckdns.org
2222
DirectAdmin (http)



www.cloudfrost.duckdns.org
2222
DirectAdmin (http)



www.cloudfrost.duckdns.org
2222
DirectAdmin (https)



www.cloudfrost.duckdns.org
2222
DirectAdmin (https)



www.cloudfrost.duckdns.org
3306
mySql



www.cloudfrost.duckdns.org
3306
mySql



www.cloudfrost.duckdns.org
5224
Plesk Licensing



www.cloudfrost.duckdns.org
5224
Plesk Licensing



www.cloudfrost.duckdns.org
5432
PostgreSQL



www.cloudfrost.duckdns.org
5432
PostgreSQL



www.cloudfrost.duckdns.org
8080
Ookla Speedtest (http)



www.cloudfrost.duckdns.org
8080
Ookla Speedtest (http)



www.cloudfrost.duckdns.org
8080
Ookla Speedtest (https)



www.cloudfrost.duckdns.org
8080
Ookla Speedtest (https)



www.cloudfrost.duckdns.org
8083
VestaCP http



www.cloudfrost.duckdns.org
8083
VestaCP http



www.cloudfrost.duckdns.org
8083
VestaCP https



www.cloudfrost.duckdns.org
8083
VestaCP https



www.cloudfrost.duckdns.org
8443
Plesk Administration (https)



www.cloudfrost.duckdns.org
8443
Plesk Administration (https)



www.cloudfrost.duckdns.org
8447
Plesk Installer + Updates



www.cloudfrost.duckdns.org
8447
Plesk Installer + Updates



www.cloudfrost.duckdns.org
8880
Plesk Administration (http)



www.cloudfrost.duckdns.org
8880
Plesk Administration (http)



www.cloudfrost.duckdns.org
10000
Webmin (http)



www.cloudfrost.duckdns.org
10000
Webmin (http)



www.cloudfrost.duckdns.org
10000
Webmin (https)



www.cloudfrost.duckdns.org
10000
Webmin (https)



70.92.101.94
21
FTP
open
550 No connections allowed from your IP

70.92.101.94
21
FTP
open
550 No connections allowed from your IP

70.92.101.94
22
SSH



70.92.101.94
22
SSH



70.92.101.94
25
SMTP



70.92.101.94
25
SMTP



70.92.101.94
53
DNS
open


70.92.101.94
53
DNS
open


70.92.101.94
110
POP3



70.92.101.94
110
POP3



70.92.101.94
143
IMAP



70.92.101.94
143
IMAP



70.92.101.94
465
SMTP (encrypted)



70.92.101.94
465
SMTP (encrypted)



70.92.101.94
587
SMTP (encrypted, submission)



70.92.101.94
587
SMTP (encrypted, submission)



70.92.101.94
993
IMAP (encrypted)



70.92.101.94
993
IMAP (encrypted)



70.92.101.94
995
POP3 (encrypted)



70.92.101.94
995
POP3 (encrypted)



70.92.101.94
1433
MS SQL



70.92.101.94
1433
MS SQL



70.92.101.94
2082
cPanel (http)



70.92.101.94
2082
cPanel (http)



70.92.101.94
2083
cPanel (https)



70.92.101.94
2083
cPanel (https)



70.92.101.94
2086
WHM (http)



70.92.101.94
2086
WHM (http)



70.92.101.94
2087
WHM (https)



70.92.101.94
2087
WHM (https)



70.92.101.94
2089
cPanel Licensing



70.92.101.94
2089
cPanel Licensing



70.92.101.94
2095
cPanel Webmail (http)



70.92.101.94
2095
cPanel Webmail (http)



70.92.101.94
2096
cPanel Webmail (https)



70.92.101.94
2096
cPanel Webmail (https)



70.92.101.94
2222
DirectAdmin (http)



70.92.101.94
2222
DirectAdmin (http)



70.92.101.94
2222
DirectAdmin (https)



70.92.101.94
2222
DirectAdmin (https)



70.92.101.94
3306
mySql



70.92.101.94
3306
mySql



70.92.101.94
5224
Plesk Licensing



70.92.101.94
5224
Plesk Licensing



70.92.101.94
5432
PostgreSQL



70.92.101.94
5432
PostgreSQL



70.92.101.94
8080
Ookla Speedtest (http)



70.92.101.94
8080
Ookla Speedtest (http)



70.92.101.94
8080
Ookla Speedtest (https)



70.92.101.94
8080
Ookla Speedtest (https)



70.92.101.94
8083
VestaCP http



70.92.101.94
8083
VestaCP http



70.92.101.94
8083
VestaCP https



70.92.101.94
8083
VestaCP https



70.92.101.94
8443
Plesk Administration (https)



70.92.101.94
8443
Plesk Administration (https)



70.92.101.94
8447
Plesk Installer + Updates



70.92.101.94
8447
Plesk Installer + Updates



70.92.101.94
8880
Plesk Administration (http)



70.92.101.94
8880
Plesk Administration (http)



70.92.101.94
10000
Webmin (http)



70.92.101.94
10000
Webmin (http)



70.92.101.94
10000
Webmin (https)



70.92.101.94
10000
Webmin (https)





Permalink: https://check-your-website.server-daten.de/?i=aeeaf4dd-36c6-4e38-ab94-92e3e3214716


Last Result: https://check-your-website.server-daten.de/?q=cloudfrost.duckdns.org - 2020-04-07 14:51:06


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=cloudfrost.duckdns.org" target="_blank">Check this Site: cloudfrost.duckdns.org</a>