HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 449 ms
https://surveytricks.com/- Status
- 200
- Message
- OK
- Time
- 449 ms
- IP
- 172.67.218.117
Timing
Wait
0 ms
DNS
8 ms
TCP
4 ms
Request
0 ms
First Byte
431 ms
Download
1 ms
Total
449 ms
HTTP Headers
- Date
Sun, 25 Jan 2026 09:06:20 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=utf-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
utf-8
- Connection
keep-alive
Control options for the current connection and list of hop-by-hop response fields.
keep-alive - The client would like to keep the connection open.
- Report-To
{"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kxo%2Fwlva1PsOaPIRgXu0oHbc9mZB5EwJG%2FJVz01y0sff8De98wQevatZnw48RO8YKLmffFfoJtt6if8NcSJEdZXf%2B27PinPK2h2E3Vhu"}]}
Report to.
Group
cf-nel
Max_age
604800
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=kxo%2Fwlva1PsOaPIRgXu0oHbc9mZB5EwJG%2FJVz01y0sff8De98wQevatZnw48RO8YKLmffFfoJtt6if8NcSJEdZXf%2B27PinPK2h2E3Vhu"}
- Set-Cookie
AWSALBTG=F8J43ZtHlPpdTTQGY+UbcnBPh2NBXKDPrHZaz9Ssgve9xjbdC0cKwKXX7pDOTz8V4JazIX6mqeOOnuuOGz5Z95HWtiDHtH6VMaPULAOQcv/4I4up+g8QB4dE/q8RfllHlUmhlYwhySVz5NddM4gPQxxmLhIWSLCd09TTGxQvi3EQ9ni9ujU=; Expires=Sun, 01 Feb 2026 09:06:19 GMT; Path=/
A cookie sent from the server to be set on the client
AWSALBTG
F8J43ZtHlPpdTTQGY+UbcnBPh2NBXKDPrHZaz9Ssgve9xjbdC0cKwKXX7pDOTz8V4JazIX6mqeOOnuuOGz5Z95HWtiDHtH6VMaPULAOQcv/4I4up+g8QB4dE/q8RfllHlUmhlYwhySVz5NddM4gPQxxmLhIWSLCd09TTGxQvi3EQ9ni9ujU
Cookie name and value.
Expires
Sun, 01 Feb 2026 09:06:19 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Set-Cookie
AWSALBTGCORS=F8J43ZtHlPpdTTQGY+UbcnBPh2NBXKDPrHZaz9Ssgve9xjbdC0cKwKXX7pDOTz8V4JazIX6mqeOOnuuOGz5Z95HWtiDHtH6VMaPULAOQcv/4I4up+g8QB4dE/q8RfllHlUmhlYwhySVz5NddM4gPQxxmLhIWSLCd09TTGxQvi3EQ9ni9ujU=; Expires=Sun, 01 Feb 2026 09:06:19 GMT; Path=/; SameSite=None
A cookie sent from the server to be set on the client
AWSALBTGCORS
F8J43ZtHlPpdTTQGY+UbcnBPh2NBXKDPrHZaz9Ssgve9xjbdC0cKwKXX7pDOTz8V4JazIX6mqeOOnuuOGz5Z95HWtiDHtH6VMaPULAOQcv/4I4up+g8QB4dE/q8RfllHlUmhlYwhySVz5NddM4gPQxxmLhIWSLCd09TTGxQvi3EQ9ni9ujU
Cookie name and value.
Expires
Sun, 01 Feb 2026 09:06:19 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Samesite
None
Cookie sent with both cross-site and same-site requests..
- Set-Cookie
AWSALB=XMbxQO4dIp5qvzyEWuEIO5J8mqhRwlGVwaW2Elr7uXSTRdrhMkgx8hN2XDXpu7zCajU1Z0jhQNS3Dwvp+AFTqD2yLvHTOTvoDKeZoCsKJL7nZv5U36FffuffsGk4; Expires=Sun, 01 Feb 2026 09:06:19 GMT; Path=/
A cookie sent from the server to be set on the client
AWSALB
XMbxQO4dIp5qvzyEWuEIO5J8mqhRwlGVwaW2Elr7uXSTRdrhMkgx8hN2XDXpu7zCajU1Z0jhQNS3Dwvp+AFTqD2yLvHTOTvoDKeZoCsKJL7nZv5U36FffuffsGk4
Cookie name and value.
Expires
Sun, 01 Feb 2026 09:06:19 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Set-Cookie
AWSALBCORS=XMbxQO4dIp5qvzyEWuEIO5J8mqhRwlGVwaW2Elr7uXSTRdrhMkgx8hN2XDXpu7zCajU1Z0jhQNS3Dwvp+AFTqD2yLvHTOTvoDKeZoCsKJL7nZv5U36FffuffsGk4; Expires=Sun, 01 Feb 2026 09:06:19 GMT; Path=/; SameSite=None
A cookie sent from the server to be set on the client
AWSALBCORS
XMbxQO4dIp5qvzyEWuEIO5J8mqhRwlGVwaW2Elr7uXSTRdrhMkgx8hN2XDXpu7zCajU1Z0jhQNS3Dwvp+AFTqD2yLvHTOTvoDKeZoCsKJL7nZv5U36FffuffsGk4
Cookie name and value.
Expires
Sun, 01 Feb 2026 09:06:19 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Samesite
None
Cookie sent with both cross-site and same-site requests..
- Set-Cookie
ASP.NET_SessionId=mg4gibgz1pgh5fp2zuujbi3m; path=/; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
ASP.NET_SessionId
mg4gibgz1pgh5fp2zuujbi3m
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
ASP.NET_SessionId=mg4gibgz1pgh5fp2zuujbi3m; path=/; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
ASP.NET_SessionId
mg4gibgz1pgh5fp2zuujbi3m
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
popup-home-page=true; expires=Sun, 25-Jan-2026 17:06:19 GMT; path=/
A cookie sent from the server to be set on the client
popup-home-page
true
Cookie name and value.
Expires
Sun, 25-Jan-2026 17:06:19 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Set-Cookie
__RequestVerificationToken=mj7QMr9pNhfFJQLxjrWan2XEGepMkeSwsSoR-hs6RaVTnn9GcFcRjwTCkkqHA0N6mCYhYJAI7-jV-uFMMaehHTeHicI1; path=/; HttpOnly
A cookie sent from the server to be set on the client
__RequestVerificationToken
mj7QMr9pNhfFJQLxjrWan2XEGepMkeSwsSoR-hs6RaVTnn9GcFcRjwTCkkqHA0N6mCYhYJAI7-jV-uFMMaehHTeHicI1
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
- Cache-Control
private, s-maxage=0
Inform all caching mechanisms from server to client whether they may cache this object.
private
May only be stored by a browser cache.
S-Maxage
0
Override max-age for shared caches, ignored by private caches.
- Nel
{"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Configure network request logging.
Report_to
cf-nel
Success_fraction
0Max_age
604800
- Vary
Accept-Encoding
Indicates that different content may be provided to different clients, depending on the vary header.
Headers
- Accept-Encoding
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Strict-Transport-Security
max-age=15552001; includeSubDomains
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
15552001 (180 days 1 second)
The time a browser should remember a site can only be accessed with https (seconds).
includesubdomains
max-age applies to subdomains as well.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Cache-Status
DYNAMIC
Encoded information about your request from Cloudflare.
DYNAMIC - This is not cached by default.
- Server-Timing
cfCacheStatus;desc="DYNAMIC"
Server metrics for the request.
Cfcachestatus
DYNAMIC
- Server-Timing
cfEdge;dur=9,cfOrigin;dur=418
Server metrics for the request.
Cfedge
- dur - 9
Cforigin
- dur - 418
Problems were detected with this header
- Duplicate header. There is another header with this name and this may cause problems.
- Cf-Ray
9c369d28ffb63f02-EWR
Encoded information about your request from Cloudflare.
- Alt-Svc
h3=":443"; ma=86400
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 86400 (1 day)
Max age for the alternative (seconds).
- ma - 86400 (1 day)