Following on from this discussion: https://reddthat.com/post/6044040 I finally updated my VPS setup - deleted everything and started fresh with a whole new approach. I decided to make a full writeup for anyone that might find it useful or at least mildly interesting. I’m not an expert in any of the concepts that I wrote about so looking forward to the many many ways that I can improve! Many thanks!
I don’t want to have to remember to toggle wireguard/tailscale whenever go out or come home.
WG can do this automatically when you leave a specific pre specified WiFi network.
I should have prefaced my situation better: I live in a country where the ISP censors certain websites and online services. The closest Linode is not on my continent (so the latency is noticeable). So my need to be connected to the Wireguard VPN really depends on what I’m doing. Having a split DNS system is seamless and I only activate the VPN manually as needed (both at home and when I’m out) Otherwise I would have just asked my ISP for a static IP, opened some ports and installed tailscale for everything else.
That is not feasible for many/most people.
Upload speeds of the average person make general internet use while connected to a home VPN much worse. For example, my mobile nework is at least 10x faster than my home network upload speed if I am in a place with 5g. I’d much rather connect to my paid VPN provider where the speed difference is barely noticable.
Not to mention even if people are using a VPS, it might be very far away and severely impact speeds.
I’m not saying it is; I’m saying that the option exists and is possible.
Exactly!