Goatd.net DNS record lookup check

DNS record types tested in our free DNS record lookup test are divided into 6 large groups with a total of 71 tests:

  • DNS Parent Group - 5 tests
  • NS (Nameserver) - 17 tests
  • SOA (Start of Authority) - 9 tests
  • MX (Mail Exchanger) - 12 tests
  • MAIL (Email) - 4 tests
  • WWW (World Wide Web) - 24 tests

For ease of summarization, review and understanding, we have divided the test results of our DNS lookup record check in four statuses:

  • PASS status - No problem was found in the DNS record
  • FAIL status - We found a DNS record error that requires your attention
  • WARN status - We found a minor DNS record error
  • INFO status - Only information about a given DNS record for educational purposes without any detected errors

Below is an overview of the record results of our comprehensive DNS lookup check for a domain Goatd.net:

DNS Record DNS Check DNS Test Name DNS Record Information
PASS Missing Direct Parent check OK. Your direct parent zone exists, SOA of parent zone net is a.gtld-servers.net which is good. Some domains (usually third or fourth level domains, such as example.co.us or subdomain.example.co.us) do not have a direct parent zone ('co.us' in this example), which is legal but can cause confusion.
FAIL Glue at parent nameservers The parent servers do not have glue for your nameserversns1.fp261.parklogic.com, ns2.fp261.parklogic.com
INFO NS records at parent servers Your NS record at parent servers are:

These were obtained from b.gtld-servers.net. However these were obtained from authority section and not answer section. It is better if they were obtained from answer section.
PASS DNS servers have A records OK. All your DNS servers either have A records at the zone parent servers
FAIL Parent nameservers have your nameservers listed Your nameservers not listed in parent servers: ns2.parklogic.com, ns1.parklogic.com
DNS Group DNS Status DNS Test Name DNS Record Information
INFO NS records at your nameservers Your NS records at your nameservers are:
DNS Group DNS Status DNS Test Name DNS Record Information
INFO SOA record Your SOA record [TTL=86400] is:
Primary Name server: ns1.parklogic.com
Hostmaster E-mail address: hostmaster.Goatd.net
Serial #:2020022001
Refresh: 3600
Retry: 7200
Expire: 1209600
Default: 3600
FAIL SOA MNAME entry SOA MNAME ns1.parklogic.com is not listed as a primary nameserver at your parent nameserver
PASS SOA RNAME entry OK. Your SOA (Start of Authority) record states that your DNS contact E-mail address is: [email protected] (techie note: we have changed the initial '.' to an '@' for display purposes).
PASS NS agreement on SOA Serial # OK. All your nameservers agree that your SOA serial number is 2009050102. That means that all your nameservers are using the same data (unless you have different sets of data with the same serial number, which would be very bad)! Note that the DNS report only checks the NS records listed at the parent servers (not any stealth servers).
PASS SOA Serial Your SOA serial number is: 2020022001. This appears to be in the recommended format of YYYYMMDDnn.
INFO SOA REFRESH OK. Your SOA REFRESH interval is: 3600. RFC 1912 recommends 1200 to 43200 seconds, low (1200) if the data is volatile or 43200 (12 hours) if it's not. If you are using NOTIFY you can set for much higher values, for instance, 1 or more days (> 86400 seconds).
WARN SOA RETRY OK. Your SOA RETRY interval is: 7200. Typical values would be 180 (3 minutes) to 900 (15 minutes) or higher.
INFO SOA EXPIRE OK. Your SOA EXPIRE interval is: 1209600 .RFC 1912 recommends 1209600 to 2419200 seconds (2-4 weeks) to allow for major outages of the zone master.
DNS Group DNS Status DNS Test Name DNS Record Information
FAIL MX Glue MX record look up did not send glue record for atleast 1 MX server:
PASS MX records are not CNAMEs OK. Looking up your MX record did not just return a CNAME. If an MX record query returns a CNAME, extra processing is required, and some mail servers may not be able to handle it.
PASS MX name validity Good. We did not detect any invalid chars in hostnames for your MX records.
PASS MX is host name, not IP OK. All of your MX records are host names (as opposed to IP addresses, which are not allowed in MX records).
PASS Different MX records at nameservers Good. Looks like all your nameservers have the same set of MX records. This tests to see if there are any MX records not reported by all your nameservers
FAIL MX Glues match MX Glue returned by nameserver for MX record doesn't match with A record of MX hostname
mc.planbnow.co >;///// X
PASS Duplicate MX records OK. You do not have any duplicate MX records (pointing to the same IP). Although technically valid, duplicate MX records can cause a lot of confusion, and waste resources.
PASS MX A lookups have no CNAMEs OK. There appear to be no CNAMEs returned for A records lookups from your MX records (CNAMEs are prohibited in MX records, according to RFC974, RFC1034 3.6.2, RFC1912 2.4, and RFC2181 10.3).
INFO MX Record Your 1 records:
10    mc.planbnow.co    [IP Address=]  [TTL=3600]
FAIL Multiple MX records You need to have multiple MX records so that if one is down or unreachable, the other(s) will be able to accept mail for you.
PASS Reverse MX A records (PTR) The reverse (PTR) record for your MX records: -> 13-40-158-23.clients.gthost.com
PASS All MX IPs public OK. All of your MX records appear to use public IPs. If there were any private IPs, they would not be reachable, causing slight mail delays, extra resource usage, and possibly bounced mail.
DNS Group DNS Status DNS Test Name DNS Record Information
PASS SPF record v=spf1 -all
this domain never sends out email
WARN Sender ID record(spfv2.0) SenderID framework not implemented
PASS Domain Key Test v=spf1 -all
The interim sending domain policy
this domain may sign some email with DomainKeys available under selectors
  • The public key certificate is not tested
  • Separate domainkey records may exist for subdomains and selectors under this domain. this cannot be tested.
  • PASS DMARC v=spf1 -all
    DNS Group DNS Status DNS Test Name DNS Record Information
    INFO WWW A record Your WWW A record is:
    www.Goatd.net >
    You have separate A record for www
    PASS IPs are public OK. All of your WWW IP addresses appear to be public IP addresses.
    PASS HTTP Service OK: We can connect to http service on port 80.
    FAIL Server http service on port 80 didn't return server information.
    INFO Server Header http response header didn't return any server information
    INFO Connection http connection header didn't return any information about HTTP connection
    WARN Secure Header HSTS The server did not implement the HSTS (HTTP Strict Transport Security) policy. The header over the HTTPS connection was not found.
    WARN Secure Header X-Frame-Options XFO clickjacking protection response header was not found. XFO enables content to be found or not within iframes via the browser.
    WARN Secure Header X-Content-Type-Options The X-Content-Type-Options secure header is not set
    WARN Secure Header Content-Security-Policy CSP is not defined in the policy. The return secure header does not send any feedback that the CSP has been set
    WARN Secure Header X-Permitted-Cross-Domain-Policies X-Permitted-Cross-Domain-Policies was not found in the response header
    WARN Secure Header Referrer-Policy The Referrer-Policy HTTP header is not set, as it is not in the Referrer header.
    INFO Secure Header Clear-Site-Data Clear-Site-Data was not found in the response header
    INFO Secure Header Cross-Origin-Embedder-Policy COEP response header was not found in the HTTP request
    INFO Secure Header Cross-Origin-Opener-Policy COOP response header was not found in the HTTP request
    WARN Secure Header Cross-Origin-Resource-Policy CORP policy not found in response header
    WARN Secure Header Cache-Control Cache-Control policy header not found in HTTP responses
    WARN Secure Header Permissions-Policy Permissions-Policy header was not found in the HTTP responses.
    INFO Secure Header Feature-Policy Feature-Policy header was not found in the HTTP responses.
    INFO Secure Header X-XSS-Protection (Deprecated) X-XSS-Protection header was not found in the HTTP responses.
    INFO Secure Header HTTP Public Key Pinning (Deprecated) HPKP header was not found in the HTTP responses.
    INFO Secure Header Expect-CT (Deprecated) Expect-CT header was not found in the HTTP responses.
    PASS SSL / HTTPS Protocol Domain use encrypted SSL / HTTPS connection on port 443.
    Check SSL Certificate.
    FAIL IPv6 Your domain has no IPv6 support

    Click below to Copy url to clipboard for easy sharing of results: