Site Unreachable: Diagnosis and Resolution

When your users can't access your site

An unreachable site represents one of the most critical situations for an online business. Every minute of downtime translates into lost revenue, customer trust, and potentially search rankings. The problem is that causes can be multiple and located at different levels of the technical stack.

Unreachability can stem from DNS (the domain doesn't resolve), network (the server isn't reachable), the server itself (web service stopped, crash), SSL certificate (expired or misconfigured), or the application (fatal error, maintenance). Each cause requires a different resolution approach.

The critical first step is determining whether the problem is global (everyone is affected) or localized (only certain users or networks). This distinction immediately guides the diagnosis. Proactive monitoring like MoniTao allows you to detect unreachability before your users notice.

Common causes of unreachability

A site can become unreachable for many reasons. Here are the most frequent causes, classified by technical layer:

  • DNS problem: the domain has expired, DNS records are incorrect or not propagated, or the authoritative DNS server is down. The browser cannot resolve the domain name to an IP address.
  • Server down: the physical or virtual server is stopped, has crashed, or is rebooting. Causes can include: hardware failure, kernel panic, host maintenance, or resource exhaustion.
  • Web service stopped: the server is up but Apache/Nginx isn't running. Possible after a reboot without the service configured to auto-start, or a daemon crash.
  • Expired or invalid SSL certificate: modern browsers block access to sites with expired, self-signed, or chain-error certificates. The user sees a security warning.

Diagnosis methodology

A methodical diagnosis allows you to quickly identify the failing layer:

  • Check if the problem is global: test from multiple networks (WiFi, 4G, VPN) and use tools like isitdownrightnow.com. If it's down for everyone, the problem is server-side. Otherwise, it's a localized issue (DNS cache, ISP).
  • Test DNS resolution: use dig or nslookup to verify the domain resolves to the correct IP. Compare with dnschecker.org to see global propagation. If DNS fails = registrar or DNS problem.
  • Test network connectivity: ping the server's IP to verify it responds at the network level. If no response, the server is down or a firewall is blocking ICMP.
  • Test the web service: telnet or nc on port 80/443 to verify the web server is listening. curl -v to see the HTTP response. This isolates service issues.

Quick diagnosis commands

Here are the essential commands to diagnose an unreachable site:

# 1. Check DNS resolution
dig example.com +short
nslookup example.com

# 2. Test network connectivity
ping -c 4 example.com
traceroute example.com

# 3. Test web port
nc -zv example.com 80
nc -zv example.com 443

# 4. Test HTTP/HTTPS
curl -I http://example.com
curl -I https://example.com

# 5. View SSL details
curl -vI https://example.com 2>&1 | grep -A 6 "Server certificate"
openssl s_client -connect example.com:443 -servername example.com

# 6. Check certificate expiration
echo | openssl s_client -connect example.com:443 2>/dev/null | openssl x509 -noout -dates

These commands walk through each layer: DNS → Network → Port → HTTP → SSL. Identify where it blocks and focus your efforts on that layer.

Prevention with MoniTao

Proactive monitoring detects unreachability before your users:

  • Multi-point verification: MoniTao checks your site from multiple locations. If it's down from only one point, it may be a regional routing issue, not a global outage.
  • Instant alerts: as soon as unreachability is detected, receive an alert via email, SMS, or webhook. Configure escalations for persistent issues.
  • SSL monitoring: MoniTao monitors your SSL certificate expiration and alerts you before they expire, preventing certificate-related outages.
  • History and patterns: analyze incident history to identify patterns: peak hours, correlation with deployments, recurring issues.

Diagnosis checklist

  • Check if the problem is global or localized
  • Test DNS resolution (dig, nslookup)
  • Test network connectivity (ping, traceroute)
  • Verify web service is listening (port 80/443)
  • Check SSL certificate (expiration, validity)
  • Check hosting provider status page

Frequently asked questions about unreachability

My site worked 5 minutes ago. What happened?

Most common sudden causes: deployment that broke something, SSL certificate that just expired, resource limit reached (OOM), hosting provider outage, or server reboot without service auto-start.

Site works on WiFi but not on 4G. Why?

Probably a DNS cache issue. Your WiFi has the old IP cached while 4G is trying to resolve to the new one. Wait for DNS propagation (TTL) or flush DNS cache on your devices.

How to be alerted before users notice?

Configure MoniTao with short intervals (1 minute) and immediate SMS alerts. You'll be notified within 60-90 seconds of the incident starting.

How long for a DNS change to propagate?

Depends on the configured TTL (Time To Live). With a short TTL (300s), propagation in minutes. With a long TTL (86400s), up to 24-48h. In practice, most is propagated in 1-4 hours.

SSL certificate expired. How to renew urgently?

If using Let's Encrypt: certbot renew. Otherwise, regenerate a certificate with your provider. Meanwhile, you can temporarily redirect to HTTP (not recommended) or put up a maintenance page.

My host says everything is fine on their end. What to do?

Check your server logs (systemctl status, dmesg, /var/log/). The problem may be in your configuration, not the host. Test with curl from the server itself (localhost) to isolate the issue.

React quickly to unreachability

An unreachable site is a business emergency. The key is having a structured diagnosis methodology that walks through each technical layer: DNS, network, server, web service, application. With the right tools and approach, you can identify the cause in minutes.

MoniTao lets you detect unreachability before your users through continuous multi-point monitoring. With instant alerts and detailed history, you can react quickly and analyze root causes to prevent recurrence. Don't let an outage impact your business for hours.

Useful Links

Ready to Sleep Soundly?

Start free, no credit card required.

Create My Account See pricing