My advice is to just use Tailscale. It’s a 5 minute setup and you get access to your stuff from anywhere, securely, without opening ports to the public internet. It will give your server a second IP address, which you will be able to access from any other device which is also registered to your Tailscale account.
My personal setup:
Tailscale installed on all devices that need access to my home lab
Custom domain with root A record set to server’s Tailscale IP
caddyserver reverse proxy on server, with DNS https authentication configured (regular http with won’t work because it’s not on the public internet)