You might want to update this reply with The point that TLS 1.3 encrypts the SNI extension, and the most important CDN is performing just that: blog site.cloudflare.com/encrypted-sni Obviously a packet sniffer could just do a reverse-dns lookup for that IP addresses you might be connecting to. This may improve https://abbies156esh4.wikikarts.com/user