So fun fact... TCP port 443 is now used for geolocation in general, not just on console. It used to be done on UDP port 3074 and I've been tearing my hair out trying to figure out why it wasn't successfully spoofing my region anymore. You just inadvertently solved my issue
But circling back to OP's problem - imo the best solution is configure Hybrid VPN with an OpenVPN config file from Express VPN, then set it up to only route TCP port 443 and UDP port 3074 (UDP 3074 is still used for matchmaking traffic).
Voila! You now have the same functionality that NoLag VPN provides for much less money. And I see no reason why it wouldn't work on console.
.png "Like")