Your ISP can see the packets they pass, and your https headers still have the SNI field unencrypted unless you’re on a VPN or the operator has ESNI (old) or ECH (new) configured, but I don’t think these are super prevalent just yet. Having the SNI available means they can still traffic shape your packets if they have the hardware in place.
Your ISP can see the packets they pass, and your https headers still have the SNI field unencrypted unless you’re on a VPN or the operator has ESNI (old) or ECH (new) configured, but I don’t think these are super prevalent just yet. Having the SNI available means they can still traffic shape your packets if they have the hardware in place.