I wanted to move away from Tailscale but found Headscale a bit too convoluted for what I actually needed.
Ended up with a simple WireGuard setup using two VPSes: one as a VPN hub, the other acting as a reverse proxy back into my home lab.
It lets me expose services publicly without any inbound port forwarding on my home connection.
I thought about setting tail scale up for my home server but then I realized I’ve got no one I want to open myself up to and just use the VPN to connect to my stuff. Good setup, I like 💖