With your domain settings, I think "http*://*.
primanada.com" was good
and you should put it back: that should fix the "no permission to
rewrite" notices.
The other Domain ones you had are bad because they're telling
pagespeed "this is the name of another server which is running
pagespeed", which isn't true for
google.com,
sharethis.com, etc.
With "remembering recent failure for 299 seconds", it looks like
http://images.primanada.com/image/cache/products/yamaha-mgp12x-side-160x160.jpg
has two issues:
a) it has way too many headers, with lots of duplicates. [1] This
isn't really a problem for pagespeed, but it's probably a bug.
b) It's a redirect to
https://images.primanada.com/image/cache/products/yamaha-mgp12x-side-160x160.jpg
and PageSpeed doesn't follow redirects on resources.
https://github.com/pagespeed/mod_pagespeed/issues/262 Could you
change the url to the https version?
[1] See:
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Mar 2016 19:18:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d1061e95b631d2217fb99f5a77dae46a51458328683;
expires=Sat, 18-Mar-17 19:18:03 GMT; path=/; domain=.
primanada.com;
HttpOnly
Location:
https://images.primanada.com/image/cache/products/yamaha-mgp12x-side-160x160.jpg
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'
https://www.google-analytics.com
https://connect.facebook.net; img-src 'self'
https://www.google-analytics.com https://s-static.ak.facebook.com;
style-src 'self' 'unsafe-inline'
https://fonts.googleapis.com;
font-src 'self'
https://themes.googleusercontent.com; frame-src
https://www.facebook.com https://s-static.ak.facebook.com; object-src
'none'
CF-Cache-Status: HIT
Expires: Sat, 26 Mar 2016 19:18:03 GMT
Cache-Control: public, max-age=691200
Server: cloudflare-nginx
CF-RAY: 285b074116e2241a-IAD
>>>> > email to
ngx-pagespeed-di...@googlegroups.com.
>>> email to
ngx-pagespeed-di...@googlegroups.com.
> email to
ngx-pagespeed-di...@googlegroups.com.