Using DietPi as VPN Gateway but leave DietPi services (Nextcloud, Jellyfin, Gitea ...) reachable via domain

Hi guys,

I want to use my DietPi Odroid N2+ to use as a VPN Gateway to ProtonVPN for all my Devices in my homenetwork. At the same time i want to leave my services (Nextcloud, Jellyfin, Gitea - also a static hosted website over nginx) publicly reachable over my custom domain.

How can i do that?

I guess you need to setup split tunnel using iptables to exclude some traffic from VPN. There should be a couple of topics on our forum already.