HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 30 ms
https://tr.drochilnik.xyz/- Status
- 403
- Message
- Forbidden
- Time
- 30 ms
- IP
- 104.21.48.1
Timing
Wait
0 ms
DNS
11 ms
TCP
2 ms
Request
0 ms
First Byte
10 ms
Download
0 ms
Total
30 ms
HTTP Headers
- Date
Sat, 15 Mar 2025 00:21:41 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=UTF-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
UTF-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- Accept-Ch
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Specify what client hints should be included in subsequent requests.
sec-ch-ua-bitness
Problems were found.
- Option is not one of known values.
sec-ch-ua-arch
Problems were found.
- Option is not one of known values.
sec-ch-ua-full-version
Problems were found.
- Option is not one of known values.
sec-ch-ua-mobile
Problems were found.
- Option is not one of known values.
sec-ch-ua-model
Problems were found.
- Option is not one of known values.
sec-ch-ua-platform-version
Problems were found.
- Option is not one of known values.
sec-ch-ua-full-version-list
Problems were found.
- Option is not one of known values.
sec-ch-ua-platform
Problems were found.
- Option is not one of known values.
sec-ch-ua
Problems were found.
- Option is not one of known values.
ua-bitness
Problems were found.
- Option is not one of known values.
ua-arch
Problems were found.
- Option is not one of known values.
ua-full-version
Problems were found.
- Option is not one of known values.
ua-mobile
Problems were found.
- Option is not one of known values.
ua-model
Problems were found.
- Option is not one of known values.
ua-platform-version
Problems were found.
- Option is not one of known values.
ua-platform
Problems were found.
- Option is not one of known values.
ua
Problems were found.
- Option is not one of known values.
- Cf-Mitigated
challenge
- Critical-Ch
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
- Cross-Origin-Embedder-Policy
require-corp
- Cross-Origin-Opener-Policy
same-origin
Isolate the document from cross-origin windows.
same-origin - Isolated the browsing context to same-origin.
- Cross-Origin-Resource-Policy
same-origin
The cross-origin policy.
same-origin - Allow same origin requests only.
- Origin-Agent-Cluster
?1
- Permissions-Policy
accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Enable and disable browser features.
accelerometer
Control access to accelerometer.
- () - Feature is disabled.
autoplay
Allow access to autoplay media.
- () - Feature is disabled.
browsing-topics
Problems were found.
- Unknown option
- () - Feature is disabled.
camera
Control access to camera.
- () - Feature is disabled.
clipboard-read
Control access to clipboard reading.
- () - Feature is disabled.
clipboard-write
Control access to clipboard writing.
- () - Feature is disabled.
geolocation
Control access to geo location API.
- () - Feature is disabled.
gyroscope
Control access to gyroscope API.
- () - Feature is disabled.
hid
Problems were found.
- Unknown option
- () - Feature is disabled.
interest-cohort
Control access to Federated Learning of Cohorts.
- () - Feature is disabled.
magnetometer
Control access to magnetometer API.
- () - Feature is disabled.
microphone
Control access to microphone device.
- () - Feature is disabled.
payment
Control access to payment request API.
- () - Feature is disabled.
publickey-credentials-get
Control access to web authentication API.
- () - Feature is disabled.
screen-wake-lock
Control access to screen wake lock API.
- () - Feature is disabled.
serial
Problems were found.
- Unknown option
- () - Feature is disabled.
sync-xhr
Control access to XMLHttpRequests.
- () - Feature is disabled.
usb
Control access to web USB API.
- () - Feature is disabled.
- Referrer-Policy
same-origin
Controls what referrer information is sent with requests.
same-origin - Send the full referrer for same origin requests, and nothing for cross-origin.
- Server-Timing
chlray;desc="9207da236cfac32c"
Server metrics for the request.
Chlray
9207da236cfac32c
- Server-Timing
cfL4;desc="?proto=TCP&rtt=1238&min_rtt=992&rtt_var=548&sent=3&recv=5&lost=0&retrans=0&sent_bytes=2834&recv_bytes=695&delivery_rate=2919354&cwnd=251&unsent_bytes=0&cid=c4bf74decd43a911&ts=15&x=0"
Server metrics for the request.
Cfl4
Problems were detected with this header
- Duplicate header. There is another header with this name and this may cause problems.
- X-Content-Options
nosniff
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Cf-Chl-Out
sJpbrwt/WqEf+qSa8U+gLldIGPVV8PbgTfaqm1W1cALs9s0Iks+zsAqc0RMcjSBnZ53PjxyfjpEQXLRO5SUpZ3v8+LwdzimqV17ng7aK9aUvRdO6y/J/yznXcBYsJk/52670l9aCeKWK1NV+8dK1pw==$KIUzWGKQmFk1wZWU/XsTZg==
- Cache-Control
private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Inform all caching mechanisms from server to client whether they may cache this object.
private
May only be stored by a browser cache.
Max-Age
0
The time a browser should remember a site can only be accessed with https (seconds).
no-store
May not be stored by any cache.
no-cache
May be stored by any cache but must be validated by the server.
must-revalidate
Stale caches must not be used.
post-check
0
Problems were found.
- Option is not one of known values.
pre-check
0
Problems were found.
- Option is not one of known values.
- Expires
Thu, 01 Jan 1970 00:00:01 GMT
The time at which the response is considered stale.
- Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2BbtuVns6Cnt8mrYQUMfLQf80S8WW7PYaMJowriWnM4JhS678K%2F2KqTE187mETLAuZSBmeJNldCeQw1n3%2FNrVCWaFNFNrSBWONVdCaJEFoh1V04QwiXlSkFMJzFFgcpnKuICqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
Report to.
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=t%2BbtuVns6Cnt8mrYQUMfLQf80S8WW7PYaMJowriWnM4JhS678K%2F2KqTE187mETLAuZSBmeJNldCeQw1n3%2FNrVCWaFNFNrSBWONVdCaJEFoh1V04QwiXlSkFMJzFFgcpnKuICqQ%3D%3D"}
Group
cf-nel
Max_age
604800
- Nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Configure network request logging.
Success_fraction
0Report_to
cf-nel
Max_age
604800
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Ray
9207da236cfac32c-EWR
Encoded information about your request from Cloudflare.