DNS Gurus
Cached · just now
62 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Significantly strengthen CSP directives
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
RSC,Next-Router-State-Tree,Next-Router-Prefetch,Next-Router-Segment-Prefetch,Accept-Encoding

Caching Headers

3 headers
Age
Caching
36115
Cache-Control
Caching
public,max-age=0,must-revalidate
Etag
Caching
"7zvc2avag17snp-df"

Content Headers

1 headers
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
Netlify
X-Powered-By
Server
Next.js

CORS Headers

0 headers
No CORS headers found

Cookies Headers

0 headers
No cookies headers found

Other Headers

50 headers
Debug-X-Nf-Edge-Functions
Other
___netlify-edge-handler-middleware,abTesting
Debug-X-Bb-Host-Id
Other
cdn-glo-aws-iad-52
Debug-X-Nf-Edge-Function-Region
Other
deno/aws-us-east-1
Debug-X-Nf-Fetch-Cache-Status
Other
"Netlify Durable"; hit; ttl=-35215, "Next.js"; fwd=miss, "Netlify Edge"; fwd=miss;detail=p1
Debug-X-Nf-Durable-Revalidation-Path
Other
/de-DE/ab/home-new/experiment-homepage-visual/a/logged-out--nf-vary-key=ba52f0e8f3e0ff0a4aba930df789bed604f74203&--vary-key=db97fefc0c2da37c5b184f867aeac187f31d7cfb
Debug-X-Nf-Cache-Info
Other
hit=0,fresh=0,swr=0,cacheable=1,mem=0,rww=0,ort=1,owt=1,ori=1
Debug-X-Deno-Runner-Image-Id
Other
64deb7-1768498603
Date
Other
Tue, 20 Jan 2026 04:24:05 GMT
Debug-X-Bb-Deploy-Id
Other
696e537230e0e60083f84f9e
Debug-Netlify-Cache-Tag
Other
_n_t_/layout,_n_t_/[lang]/layout,_n_t_/[lang]/ab/layout,_n_t_/[lang]/ab/[...slug]/layout,_n_t_/[lang]/ab/[...slug]/page,_n_t_/de-de/ab/home-new/experiment-homepage-visual/a/logged-out
Debug-X-Bb-Cache
Other
d6d1a0ed-070b-4bdb-b7d6-83922928ff8e
Debug-X-Nf-Ats-Request-Id
Other
9de0efad-ff9a-4c9d-8158-e33009ead953-974025098
Debug-X-Nf-Invocation-Metrics
Other
efcar;count=0,efcaw;count=0
Debug-X-Bb-Client-Request-Uuid
Other
01KFCTAGKQPY9RNTVBT2NYWTA4
Debug-X-Bb-Site-Id
Other
d6d1a0ed-070b-4bdb-b7d6-83922928ff8e
Cache-Status
Other
"Netlify Durable"; hit; ttl=-35215, "Next.js"; fwd=miss, "Netlify Edge"; fwd=miss;detail=p1
Debug-X-Nf-Stargate-Version
Other
3356dd5
X-Nextjs-Stale-Time
Other
4294967294
Debug-X-Nf-Proxy-Header-Rewrite
Other
1
X-Nf-Request-Id
Other
01KFCTAGKQPY9RNTVBT2NYWTA4
Debug-X-Nf-Metadata-Etag
Other
"230bc3f30b98121a80072c1c789dffff1b8e0a21"
Debug-X-Nf-Cache-Result
Other
miss
Debug-X-Nf-Fetch-Timing
Other
p1;dur=254
Debug-X-Nf-Region-Reroute
Other
us-east-1:eu-central-1
Debug-X-Nf-Client-Connection-Ip
Other
216.246.40.66
Debug-X-Nf-Raw-Cache-Variation
Other
c=*&h=*&q=__nextDataReq=*&_rsc=*&rsc=*
Debug-X-Nf-Request-Flags
Other
serverless_functions_abort_signal,serverless_functions_log_metadata,serverless_functions_response_redirect_relative,serverless_functions_wait_event_loop
Debug-X-Nf-Invocation-Metadata
Other
eyJ2ZXJzaW9uIjoidjIyLjIwLjAifQ==
Debug-X-Nf-Start-Timestamp
Other
1768846929823
Debug-X-Nf-Proxy-Version
Other
df7bcb6
Netlify-Vary
Other
query=__nextDataReq|rsc|_rsc,header=x-nextjs-data|x-next-debug-logging|RSC|Next-Router-State-Tree|Next-Router-Prefetch|Next-Router-Segment-Prefetch|Accept-Encoding|rsc|_rsc,cookie=__prerender_bypass|__next_preview_data
Debug-X-Nf-Country
Other
US
Debug-X-Nf-Bg-Fetch-Timeout
Other
3
Debug-X-Deno-Utilization
Other
0.208
Debug-X-Nf-Ats-Version
Other
5da1d26
Debug-X-Nf-Bg-Fetch
Other
1768883045
Debug-X-Bb-Gen
Other
696e537230e0e60083f84f9e:1768838221316,85a4b1e3-316c-4e89-bc79-86e7701f70b3,4192f687-ec1c-41f7-8f24-eee65b0a626f,0855680b-7728-4b3d-a7ea-f7966de96796,d492ca3a-ba5b-4054-a262-5235a0aafce3,423da121-8d06-4856-a982-c650859814af,e622a89c-e949-4c8f-8444-b6f2e4d604eb
Debug-X-Nf-Response-Type
Other
stream
Debug-X-Nf-Client-Ip
Other
216.246.40.66
Debug-X-Nf-Edge-Function-Bootstrap
Other
6931948ef335360007f573d6
Debug-X-Bb-Token-Set
Other
false
Debug-Netlify-Cdn-Cache-Control
Other
s-maxage=900, stale-while-revalidate=31535100, durable
X-Nextjs-Prerender
Other
1
Debug-X-Bb-Proxy-Type
Other
lambda_reroute
Debug-X-Bb-Account-Id
Other
60dc8e9b58a0b23e3c8358f7
Debug-X-Deno-Timing
Other
system;dur=0,deployment;dur=261
Debug-X-Nf-Cache-Key
Other
https://staging.finn.com/de-DE/ab/home-new/experiment-homepage-visual/a/logged-out--nf-vary-key=12002103151376194973
Debug-X-Nf-Func-Id
Other
f1ca72f5c912f57ea55cc7d7c6d7a8c82eed580f7c1ad5c045cfa460acb9fae8
Debug-X-Nf-Durable-Cache-Result
Other
cacheable&hit_inventory&relookup&fresh_gendb&swr&servable&served
Debug-X-Nf-Function-Type
Other
request

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology