This is still a couple years away from being implemented but the idea here is to keep the server name from leaking while establishing the TLS connection. While I am a fan of this and other privacy improvements (like DoH) I am wondering if this will break Firewalla's (Gold supporter) ability monitor our networks. Paul Vixie (DNS pioneer) claims this will break NGFW's ability to transparently intercept outbound traffic. Just wondering what the engineers thoughts are on this and trying to at least get it on the radar. Thanks!
Please sign in to leave a comment.