I have been seeing a lot of buzz about Wireguard. I had considered setting up a server at home for external access just for fun, but all of the examples I saw used NAT behind the Wireguard box and I wanted to route entire subnets without NATing. After I finally took some time and realized that Wireguard was just an interface and I would just be leveraging some iptables it all came together rather quickly.