IP Address Analyzer
Verbose subnet calculator with address classification flags.
Monitor this automatically
NetTests can run this check on a schedule, preserve historical results, compare changes over time, and alert you the moment something breaks.
Start monitoring free → See all monitoring productsFrequently Asked Questions
How is IP Address Analyzer different from Subnet Calculator?
Subnet Calculator focuses on CIDR subnet math — network address, broadcast, host range, and mask. IP Address Analyzer is more verbose: it additionally classifies the address (unicast, multicast, loopback, private, link-local, reserved, APIPA) and shows IPv4-mapped IPv6 representations, making it better for understanding what a specific address is rather than subnetting.
What is an APIPA address?
APIPA (Automatic Private IP Addressing) addresses are in the 169.254.0.0/16 range. A device assigns itself an APIPA address when it can't reach a DHCP server — it means the device has no valid network configuration and cannot communicate beyond the local link. Seeing 169.254.x.x on an interface indicates a DHCP failure.
What does 'private' vs 'public' address classification mean?
RFC 1918 defines three private IP ranges not routed on the public internet: 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16. These are used inside LANs and NAT environments. Everything else is public (routable). Sending a packet to a private address from the internet will be dropped at the originating router or ISP boundary.
Network Tools
-
HTTP Request
Send HTTP requests with custom method, headers, body, and authentication — inspect the full response.
-
HTTP Request Timing
Load a URL in headless Chromium and stream every fetched resource with size and timing.
-
Uptime Check
The simplest possible check: fetch the page, confirm it returns 2xx.
-
CORS Tester
Test any URL for CORS (Cross-Origin Resource Sharing) with a custom method, headers, and body — see exactly why a browser would allow or block the request.
-
Dead Link Checker
Crawl a website and find broken internal links — renders JS pages with a headless browser.
-
IP Blacklist Check
Check an IPv4 address against 49 major DNS blacklists (Spamhaus, SORBS, Barracuda, SpamCop, etc.).
-
Network Path Monitor
Continuous traceroute with per-hop loss and RTT statistics.
-
Traceroute
Trace the path packets take to a destination host, hop by hop.
-
Ping Scanner
Ping many hosts in parallel and report which are alive.
-
Ping Host
Send ICMP echo requests and report RTT and packet loss.
-
IP Geolocation
Resolve a domain or IP to its city, country, ASN/org, and coordinates — with a map.
-
IPv4 ↔ IPv6
Convert IPv4 to/from IPv4-mapped IPv6 (::ffff:a.b.c.d).
-
MAC OUI Lookup
Look up a MAC address's first 3 octets in the IEEE OUI vendor database (curated subset).
Email / SMTP Diagnostics
-
Email Health
One-click domain scorecard — Blacklist, Mail Server, Web Server, and DNS checks graded Errors / Warnings / Passed, MXToolbox-style.
-
Email Records Check
Consolidated MX, SPF, DMARC, and DKIM-selector lookup for an email domain.
-
SPF Record Checker
Look up and validate a domain's SPF (Sender Policy Framework) TXT record.
-
Email Blacklist Check
Resolve a domain's MX hosts to IPs and check each against 49 IP blacklists plus the domain itself against 9 domain blacklists.
-
SMTP Banner Probe
Connect to an SMTP server, capture its banner + EHLO capabilities, and test STARTTLS.
Packet Generation & Testing
-
TCP/UDP Connection Tester
Check TCP port reachability; optionally send a payload and read the reply.
-
TLS Handshake Inspector
Inspect a server's TLS handshake: version, cipher, ALPN, full cert chain.
-
HTTP Availability Check
Probe a list of hostnames (max 16) for HTTP and HTTPS availability.
-
HTTP Latency
Send N HTTP HEAD requests to a URL and report min/median/mean/max/stddev latency. From this server's vantage.
-
Path MTU Probe
Discover the path MTU to a host by sending increasingly large DF-bit pings (binary search).
IP & Subnet Utilities
Routing & BGP
TLS / SSL Auditing
-
TLS Quick Scan
Probe which TLS protocol versions a server accepts and show the cipher each negotiates.
-
TLS Deep Scan
Full chain validation, OCSP stapling, SCT count, and per-TLS-version cipher matrix.
-
SSL Certificate Expiration
Days remaining before a server's TLS certificate (and its full chain) expires.
-
Domain Certificate Audit
Search Certificate Transparency logs for every SSL certificate ever issued to a domain — reveals subdomains, issuers, and historical issuance.
NTP / Time Sync
HTTP/2 & WebSocket
-
HTTP/2 Probe
Negotiate HTTP/2 via ALPN and decode the server's SETTINGS frame (window size, max streams, etc.).
-
WebSocket Probe
Send a WebSocket Upgrade handshake and verify the Sec-WebSocket-Accept response, subprotocols, and extensions.
-
HTTP/2 Stress Testerlogin
Benchmark HTTP/2 server performance — measure requests per second, latency distribution, and concurrent stream throughput under sustained load.
Encoding & Conversion
-
Hex ↔ Text
Convert UTF-8 text to a hex string, or parse a hex string back to text (separators :/.- ignored).
-
Binary ↔ Text
Convert UTF-8 text to 8-bit binary, or parse a binary string back to text.
-
Case Converter
Convert text between common casings: UPPER, lower, Title, snake_case, kebab-case, camelCase.
-
Number Base
Convert a number between decimal, binary, octal, and hexadecimal representations.
-
Unix Timestamp
Convert between Unix epoch seconds and ISO/RFC datetime formats (UTC).
-
IPv4 ↔ Decimal
Convert between dotted IPv4 notation, 32-bit decimal, hex, and dotted binary.
-
JWT Decoder
Decode a JWT into its header and payload (no signature verification — that needs the signing key).