I concur…
So…
- add duckdns.org as domain name in your router
- create DHCP reservation for your HA machine f.e. ‘ha’ (or add name to DNS, depends a little on type of router).
- Generate and install certificates for ha.duckdns.org
- Now your HA will be reachable on both internal as well as external network by using DNS https://ha.duckdns.org [external] and https://ha.duckdns.org:8123 [internal]
Have a look at my router config on a EdgeX here
Leaves me to note someone managed to install a self- signed certificate on android
I only don’t know if IOS can do the same…did a quick search and this looks useful