I’ll add a few things that haven’t been mentioned so far.
- Speed. In your diagram, you have four chokepoints to take into account. The first is your upload/download speed for your home cable connection. This is usually asymmetric, say 100/10, so when you are connected to the home vpn server, the fastest you will be able to download to your Beryl is 10. The second, similarly, is the speed of the hotel connection. The third is the processing speed of the Beryl and the fourth is the processing speed of the convexa. Openvpn is slower than Wireguard.
- Related to this, you will actually want two almost identical Openvpn clients, the second set up to ignore an instruction to change its default gateway to that of your home openvpn server. That way you can download directly from the internet when you don’t need to appear to be sitting at home.
- Port forwarding. Eric mentioned this, but in your structure be sure your ISP router can do this.
- DDNS. Unless your home has a static routable IP address, you will need to set up DDNS. When I had comcast as my ISP, the cisco router they required only supported 3 services. You can set it up on the convexa, no doubt, but it is a little tricky with double nat.
But yes, with the sole exception of that ISP router, you are doing what I do. (Never mind link aggregation, you also have that TV thing in the mix).