In the end I opted to setup a vpn server using a Raspberry PI. This would be used to access the likes of my nextcloud, and OnlyOffice document server instances (OnlyOffice runs on an Ubuntu VM). Only devices with a current security certificate will be able to connect. It's not the fastest of connections but it's only meant for family to access (with the occasional coffee shop laptop edits). There is a really good tutorial via
https://marcstan.net/blog/2017/06/25/PiVPN-and-Pi-hole/ which I made use of (including the add-blocker) which made this possible.
I did end up using lets encrypt for one Jail and that is going to be used for my projects blog which is publicly accessible hence the reason for the separation from the VPN, I figured that this would be the best way to deal with this which was confirmed by
@danb35. Creating a publicly accessible jail without a VPN was achieved through using the noip update client updater with the most obscure host name! The SSL bit was achieved in part through a tutorial on
Techmint https://www.tecmint.com/install-lets-encrypt-ssl-certificate-for-apache-on-freebsd/and some suggestions from
@Jailer (Thanks, those links will come in handy if I want to swap things around). Time will tell If I got the Cron job setup correctly but so far so good.
I did run into a couple of issues but I resisted the temptation to run to the forums I decided to read the error logs and managed to drill the problem down to a director not being created. It was just a matter of creating the directory and everything sprung to life.
If there was anything more important to learn there it's read the logs..... The answer to the issue will either be there or at least give you some vital information which may be of use if you require forum assistance.
Depending on how the projects blog public site runs, I may make use of one of the tutorials referenced to me from
@Jailer where there is a good one on reverse proxy. I may use this if I decide to move my two other sites out of commercial hosting and bring them "in-house".
So thank you to all concerned.