Thanks for enlightening me on that aspect, setting that up with just Wireguard would indeed be a pain or outright impissible without additional tools (e.g. for UDP hole-punching), maybe I should also consider it :)

I think I've been too ignorant about Tailscale, primarily about the fact that it actually does direct peer-to-peer connections which would indeed be a pain with just Wireguard and not always trivial. I'm starting to get why so many people here are recommending it so thanks for the answer, maybe I should consider using it myself. :)

But isn't that the most trivial application of Wireguard?