What Is My IP?
This page will do a bunch of queries to my backend (and no third-party services!) to identify how you are connected to my site and my content delivery network.
Your Connection / Browser⌗
This section identifies the features which are functional in your web browser, which methods and IP families it prefers, etc.
This is implemented using a large number of domain names, all of which will resolve differently, and support a different subset of protocols.
Your IP Address⌗
This queries my backend via an ipv4-only and ipv6-only DNS record, on both the standard (80, 443) and nonstandard (42069) ports, to identify what your public IP address is, and if your (CG)NAT is utilizing different routing for non-standard ports. Some mobile ISPs do dirty tricks with your web traffic, so if these are different, your ISP may be doing something shady.
This doesn’t mean your ISP is definitely doing something shady, and your ISP could still be doing something shady if these match, this is just an indicator.
| Port | IPv6 | IPv4 |
|---|---|---|
| 443 | Loading… |
Loading… |
| 42069 | Loading… |
Loading… |
HTTPS Version Support⌗
This queries my backend via different records which are available as some combination of A/AAAA and HTTPS, with support for different HTTP versions (h1, h2, h3) to identify which versions your browser supports and prefers.
The same server handles all requests, and supports all versions. This means that the only factor in which version you see is your browser and its discovery.
| Addr Record | HTTPS Record | Alt-Svc | Result |
|---|---|---|---|
| Yes | No | No | Loading… |
| Yes | No | Yes | Loading… |
| Yes | H1/H2/H3 | Yes | Loading… |
| Yes | H1/H2/H3 | No | Loading… |
| No | H1 | No | Loading… |
| No | H2 | No | Loading… |
| No | H3 | No | Loading… |
Crypto Version Support⌗
This queries my backend via different IPv6 addresses, each of which supports only different crypto algorithms, to detect which algorithms your browser prefers and supports.
As ML-DSA is not yet available via public certificate authorities, you will need to manually trust my self-signed certificate by visiting this webpage and accepting the risk. Then the test here should work.
| Certificate | Algorithms | Result |
|---|---|---|
| RSA | Any | Loading… |
| ECDSA | Any | Loading… |
| ML-DSA | Any | Loading… |
| ECDSA | FIPS | Loading… |
| ECDSA | Non-FIPS | Loading… |
| ECDSA | Post-Quantum | Loading… |
As of this writing, only Chrome Canary supports ML-DSA certificates. However, recent versions of OpenSSL also do, which means Curl will as well:
curl -v -k https://mldsa.apalrd.net
#-v means verbose (show all connection info)
#-k means insecure (trust self-signed certificates)
Content Delivery Network⌗
Since I’m playing with traffic engineering on my CDN, here are some metrics on which CDN endpoint you have reached, and the round-trip time you see, using different traffic engineering methods. This section only works over IPv6.
| Method | Server | Latency (ms) |
|---|---|---|
| DNS | Loading… |
Loading… |
| BGP | Loading… |
Loading… |
DNS Query Information⌗
The following block is loaded from my DNS server, which provides information on your DNS query. This section only works over IPv6.
Loading...