xxiaoxxiao 12911 silver badge22 bronze badges one Even if SNI just isn't supported, an intermediary able to intercepting HTTP connections will generally be effective at checking DNS thoughts too (most interception is done near the client, like on a pirated person router). In order that they should be able to begin to see the DNS names.Regarding cac