To be clear I ran that on my reverse proxy server. In the tailscail dashboard you also need to enable the subnet

I didn't try that, I use the static local ipv4 address of my network. Like http(s)://192.168.1.3:443

So my post was the one to get rid of the cloudflare tunnel.

Basically I set up a tailscail docker on my home server and connected it with a one time key from tailscale. There I exposed my local network. (Perhaps secure that only to your homeserver IP)

Then I set up a Debian Server which hosts a lot of other stuff. But there I also installed tailscail and connected it to my account.

After this the most important part! I wasted hours to find this line of code sudo tailscale up --accept-routes With that you allow the external server to accept routes. Otherwise you can't redirect to your homeserver

The next step I took was to install nginx and setup a reverse proxy to my traefik docker on my home network

Here I routed the domain with every subdomain (*.your.domain) to my homeserver.

My homeserver took care of the https certificate so my nginx server only redirects traefik from port 80.

I can share my configs later but I have a little problem with large nextcloud uploads. And I don't have the previously working nginx config anymore.... So I need to dig a bit further again.

Ask me questions, but I can only answer them in about 7h Hope my late night writing makes sense.

So here is the setup for truecharts with traefik and the things needed for proper truecharts setup: https://truecharts.org/manual/SCALE/guides/getting-started

Do you also use cloudflare tunnel?

So I use traefik on my truenas server from the truecharts catalogue. If you need help there I can send you the corresponding links from the website later, I am not at the computer right now.

The problem is with nextcloud on my end. Some files just can't get synced and bigger files won't even go through. Perhaps something is misconfigured, but I think I red something, that cloudflare tunnels only support x gb of traffic at once.

That's a good point. But that's also the point where my tinkering won't help me... Do you have a writeup or a yt video where nginx points to the wireguard VPN? Another question. If I set up the wireguard tunnel, how can I just route the traffic from traefik?