Tried matrix a little with my own instance. Joined a room with 10k people just to notice how I got a flood of http requests from several thousands of servers.

And that, brought my network down lol

Private or business network though? I mean, I recall you having said something about this millisecond failover that you guys have in your datacenters?

(just to gauge whether my personal network is in any way worth it really.. please don't mind my personal insecurity ._.)

@Condor

My crappy home network :P

HAProxy does not like all the connections for some reason, I guess I have to redesign my design...

@Linux HAProxy at home? I might have to look into that actually! Like this fellow sysadmin friend of mine here in Belgium has these 2 ISP connections (Telenet and Belgacom I think, so even different types of wiring, Telenet has coax and Belgacom has DSL), just so that he could stay online when one of the ISP networks shits the bed. Not sure how useful both of those combined are when they're both up though.. but regardless, redundancy-wise, I'm quite jealous of his setup actually. Maybe HAProxy would be able to deal with that? I mean, assuming that it'd be connected to both of those modem/router/combo kinda stuff boxes of course.

@Condor

Oh, I use HAProxy for load balancing incoming connections and local MySQL traffic.

From what you describe, it sounds more like you should look into a Squid proxy instead for outgoing connections?

@Linux hmm, perhaps yes. In my own network (where most of my servers at home are only within the VPN but behind a slow residential connection) it takes quite some time to get files from this VPN (RTT from Belgium to Italy and then back to Belgium takes about 400ms). Perhaps Squid on said VPN servers would be able to handle that in a more elegant way, with VPN clients only having to request it from the server in Italy, rather than having to get back to my home network here in Belgium.

For my DNS server in particular I am considering to set the VPN servers to prefer the connection from home (192.168.10.3) over the VPN addresses 10.8.0.3 and 10.8.1.3 for similar latency reasons. Within the home network it's a matter of microseconds, but through the VPN it's those hundreds of milliseconds, which is abysmal. The primary reason for that VPN is for mobile connections like the one on my phone to remain on the same network as the other hosts I operate, so it seems like routing everything through the VPN, including for stationary hosts at home is a bit wrong. But I digress.

For those mobile connections to servers at my home, I guess that Squid on the VPN server could be able to halve that latency for frequently requested stuff though. Thanks for the suggestion!