Looks like Bopimo now applied what I suggested in regards to the website host. I can't tell if they did the first or second thing, but I am glad my suggestion was constructive.

The origin, which I won't leak, no longer accepts traffic on port 443.

I am looking forward to seeing my suggestion regarding the game server implemented, although less urgent.

nevermind im just stupid and forgot to specify the port LOL ignore the post above

bumping thanks fzorb for finding this out!

The webserver already dropped all traffic on ports 443 and 80 that didn't originate from cloudflare before this post was made (and has done so for over a year).

Why do you think Hetzner is awful now? Because of their recent bandwidth changes?

indeed the bandwidth changes have no sense in my opinion.

Adding to my reply, it looks like now censys leaked the origin? I don't know how it happened, genuinely zero clue about it. A few months ago I remember searching for bopimo.com on censys because I was bored, and I saw zero results, but now all of a sudden, there's an AWS IP which if you access redirects you to bopimo.com.

Very weird. I'm assuming you're dropping the packets at the firewall level, correct?

Searching around I've discovered this repository (https://github.com/Icseon/cf-iptables) which includes a pretty interesting recommendation:

> This is not enough to fully hide your IP address. You'd want to configure a default virtual host with a self signed certificate that does not contain any information about you or your website. Failure to do this will result in IP address exposure overtime.