HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
404
Total Requests
1
Total Time
811 ms
  • IP
    160.153.0.10
    View Map

  • Timing

    Wait

    0 ms

    DNS

    6 ms

    TCP

    3 ms

    Request

    0 ms

    First Byte

    789 ms

    Download

    1 ms

    Total

    811 ms

  • HTTP Headers

    Date

    Sat, 20 Apr 2024 04:23:12 GMT

    The date and time that the message was sent.

    Content-Type

    text/html; charset=UTF-8

    The MIME type of this content.

    • Type

      text/html

    • Description

      HTML file

    • Charset

      UTF-8

    Connection

    close

    Control options for the current connection and list of hop-by-hop response fields.

    close - The client or server would like to close the connection.

    Cache-Control

    public, max-age=2678400

    Inform all caching mechanisms from server to client whether they may cache this object.

    • public

      May be stored by any cache.

    • Max-Age

      2678400 (31 days)

      The time a browser should remember a site can only be accessed with https (seconds).

    Content-Security-Policy

    upgrade-insecure-requests

    The content security policy allows the server to determine what resources the user is allowed to load.

    upgrade-insecure-requests - Treat insecure URLs as though they are secure.

    Expires

    Tue, 21 May 2024 04:23:12 GMT

    The time at which the response is considered stale.

    Strict-Transport-Security

    max-age=300

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      300 (5 minutes)

      The time a browser should remember a site can only be accessed with https (seconds).

    Strict-Transport-Security

    max-age=31536000; includeSubDomains

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      31536000 (1 year)

      The time a browser should remember a site can only be accessed with https (seconds).

    • includesubdomains

      max-age applies to subdomains as well.

    Problems were detected with this header

    • Duplicate header. There is another header with this name and this may cause problems.
    Vary

    User-Agent, Accept-Encoding

    Indicates that different content may be provided to different clients, depending on the vary header.

    • Headers

      • User-Agent
      • Accept-Encoding
    X-Cache

    uncached

    Indicates whether a cache was used to server this response.

    X-Cache-Hit

    MISS

    X-Cacheable

    YES:Forced

    X-Cacheproxy-Retries

    0/2

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    X-Fawn-Proc-Count

    1,0,24

    X-Php-Version

    8.0

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    X-Backend

    varnish_ssl

    Cf-Cache-Status

    MISS

    Encoded information about your request from Cloudflare.

    MISS - Resource was not found in Cloudflare cache.

    Server

    cloudflare

    A name for the server.

    cloudflare - Description of the server software.

    Cf-Ray

    87725b8bbd7d8c09-EWR

    Encoded information about your request from Cloudflare.

    Alt-Svc

    h3=":443"; ma=86400

    Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.

    • Service

      • h3 - :443

    • Service

      • ma - 86400 (1 day)

        Max age for the alternative (seconds).