How ISPs Bypass Encrypted DNS to Track All Traffic

Do you think your encrypted DNS keeps your browsing private? In this video, I demonstrate why fancy DNS solutions like Cloudflare, Quad9, or Pi-hole won’t stop ISPs from seeing and blocking the websites you visit. Using a Raspberry Pi configured as a man-in-the-middle router and a simple Python script (sniblocker.py), I show you exactly how Server Name Indication (SNI) leaks your destination in clear text, even when using TLS 1.3 or HTTPS. Watch as I actively monitor and censor connections to major news sites on my own network, proving how easily governments or internet service providers can log your traffic. Finally, we discuss why routing all your traffic through a VPN is the only reliable way to completely encrypt your SNI data and protect your privacy in 2026.

// Python script //
SNI Blocker Python Script: https://github.com/davidbombal/sni-dn…

// YouTube video REFERENCE //
Your Fancy DNS Tricks Won’t Save You!: Your Fancy DNS Tricks Won’t Give You Privacy
How your ISP tracks you (even with encrypted DNS): How your ISP tracks you (even with encrypt…

// David’s Social //

================
Coect with me:
================
Discord: http://discord.davidbombal.com
X: https://www.x.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube Main https://www.youtube.com/davidbombal
YouTube Tech: https://www.youtube.com/chael/UCZTIRrENWr_rjVoA7BcUE_A
YouTube Clips: https://www.youtube.com/chael/UCbY5wGxQgIiAeMdNkW5wM6Q
YouTube Emerging Technologies: https://www.youtube.com/chael/UCbY5wGxQgIiAeMdNkW5wM6Q
YouTube Shorts: https://www.youtube.com/chael/UCEyCubIF0e8MYi1jkgVepKg
Apple Podcast: https://davidbombal.wiki/applepodcast
Spotify Podcast: https://open.spotify.com/show/3f6k6gERfuriI96efWWLQQ
SoundCloud: / davidbombal

================
Support me:
================
Or, buy my CCNA course and support me:
DavidBombal.com: CCNA ($10): http://bit.ly/yt999ccna
Udemy CCNA Course: https://bit.ly/ccnafor10dollars
GNS3 CCNA Course: CCNA ($10): https://bit.ly/gns3ccna10

// MY STUFF //
https://www.amazon.com/shop/davidbombal

// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com

// MENU //
0:00 – Introduction

01:29 – Use-Cases
02:48 – MITM Monitoring Explanation

03:13 – How to Block Websites
06:19 – More sni_filter.py Examples

07:59 – SNI Monitoring
13:09 – Outro

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

Disclaimer: This video is for educational purposes only.
#dns #sni #censorship

subscribe
  • David Bombal

Search

Categories

Recent Posts

How ISPs Bypass Encrypted DNS to Track All Traffic
5 Minute Hacks Demo 5: Don’t download without doing this
4 Dirty Linux Bugs Expose a Bigger Root Problem
Your ISP Doesn’t Need DNS to See What You Visit
How your ISP tracks you (even with encrypted DNS) – Part 3
The rise of DDoS attacks
My Dream “home lab”
Stop using these browsers in 2026! (Part 3)
5 Minute Hacks Demo 8: Windows 11 Password cracking with Hashcat
How your ISP tracks you (even with encrypted DNS) – Part 2