You may want to update this response with the fact that TLS one.3 encrypts the SNI extension, and the most significant CDN is doing just that: blog site.cloudflare.com/encrypted-sni Of course a packet sniffer could just do a reverse-dns lookup for the IP addresses you might be connecting to. @Pacerier: hacks https://httpsjdmengineforsalecomp68863.isblog.net/new-step-by-step-map-for-https-jdmengineforsale-com-product-jdm-mitsubishi-turbo-4g63t-engine-for-sale-54737250
