You might want to update this answer with The truth that TLS 1.3 encrypts the SNI extension, and the greatest CDN is accomplishing just that: weblog.cloudflare.com/encrypted-sni Naturally a packet sniffer could just do a reverse-dns lookup with the IP addresses you might be connecting to. Be aware however (as also https://https-jdmengineforsale-co20727.azzablog.com/37952091/the-best-side-of-https-jdmengineforsale-com-product-jdm-mitsubishi-turbo-4g63t-engine-for-sale