| Titletag | Descriptiontag | language |
|---|---|---|
| Trelast, verktøy, skruer – alt av byggevarer | XL BYGG | Norwegian |
| Alexarank |
|---|
| 402703 |
| Ip adress | 34.249.123.161 | Nameserver | ns3.visolit.no ns4.visolit.no ns1.visolit.no ns2.visolit.no ns2.telecomputing.no ns1.telecomputing.no |
Status code | 200 |
N/A
HTTP/1.1 301 Moved Permanently location: https://www.xl-bygg.no/ vary: Accept-Encoding date: Wed, 27 Aug 2025 01:45:03 GMT content-length: 0 HTTP/1.1 200 OK content-type: text/html; charset=utf-8 cache-control: private, no-cache, no-store, max-age=0, must-revalidate date: Wed, 27 Aug 2025 01:45:05 GMT content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.xlbygg.getadigital.cloud https://*.googletagmanager.com https://*.cookieinformation.com https://*.google-analytics.com https://*.googleadservices.com https://sc-static.net https://*.facebook.net https://*.doubleclick.net https://*.googleapis.com https://*.youtube.com https://*.vimeocdn.com https://*.vimeo.com https://*.snapchat.com https://*.visualwebsiteoptimizer.com https://*.mapbox.com https://helloretailcdn.com https://*.helloretail.com https://*.vev.page https://*.vev.design https://*.bidtheatre.com; style-src 'self' 'unsafe-inline' https://*.xlbygg.getadigital.cloud https://*.googleapis.com https://*.google.com https://*.mapbox.com https://helloretailcdn.com https://*.helloretail.com; img-src 'self' data: https://*.xlbygg.getadigital.cloud https://*.facebook.com https://*.google-analytics.com https://*.snapchat.com https://*.google.com https://*.google.no https://*.sanity.io https://gcc-mestergruppen.s3.eu-west-1.amazonaws.com https://*.visualwebsiteoptimizer.com https://*.googletagmanager.com https://*.googlesyndication.com https://*.vev.design https://*.g.doubleclick.net; font-src 'self' data: https://*.xlbygg.getadigital.cloud https://*.gstatic.com; connect-src 'self' blob: https://*.xlbygg.getadigital.cloud https://*.cookieinformation.com https://*.snapchat.com https://*.google-analytics.com https://*.doubleclick.net https://*.mapbox.com https://*.sanity.io https://*.google.com https://*.facebook.com https://*.sentry.io https://*.helloretail.com; base-uri 'self'; frame-ancestors 'self' https://xlbygg.sanity.studio https://studio.xlbygg.getadigital.cloud; frame-src 'self' https://*.googletagmanager.com https://*.doubleclick.net https://*.cookieinformation.com https://*.snapchat.com https://*.facebook.com https://*.youtube.com; form-action 'self' https://*.snapchat.com https://*.facebook.com https://*.forms.app; manifest-src 'self'; media-src 'self' https://*.vev.design; object-src 'self'; child-src 'self' blob:; worker-src blob:; permissions-policy: camera=(self), geolocation=(self), microphone=(self), encrypted-media=(self), payment=(self), usb=(self) referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block content-encoding: gzip vary: Accept-Encoding transfer-encoding: chunked