Investigate split DNS for a fast path at home

[ahayzen]

Client -> Internet -> DNS (external) -> VPS -> NAS -> Service

Client -> DNS (local) -> NAS -> Service

This would likely require

• Caddy on NAS handling services via https
• Change rathole to have only the https port forwarded
• Caddy on VPS to proxy all to single rathole port
• Setup a DNS server on the LAN which forwards domain to lab.local and anything else to upstream DNS

If split DNS is not used consider how services could use https in more places (between lab -> vps).

[ahayzen]

Another route is NAT hairpin as DNS over HTTPS means we can't intercept.

Web has a sub domain with IP address as home via dynamic DNS or static IP
Caddy also runs on the home lab
Router then does NAT hairpin so if address is itself it forwards straight onto the internal network.

This is a normal NAT route, downside is you expose your IP in the domain which could then be DDoS'd