You can use any domain you like. I personally have an actual domain that I only use inside my network. This way I can get SSL certs from Let’s Encrypt using the DNS challenge which doesn’t require any ports being opened. You can use self signed certs but I would strongly suggest using certs from the likes of Let’s Encrypt.

Here are 2 pages on this subject

https://github.com/dani-garcia/vaultwarden/wiki/Private-CA-and-self-signed-certs-that-work-with-Chrome

https://github.com/dani-garcia/vaultwarden/wiki/Enabling-HTTPS

vaultwarden, jellyfin, freshrss, nextcloud, and wireguard

That’s not how diplomatic immunity works. A nation is welcome to ban entry to any foreign national.

Diplomatic immunity is for crimes commited within a foreign nation. It’s also worth notting that the immunity can be revoked as well by the nation that said foreign national is from, there by allowing them to be arrested and tried under the local justice system.

“I’ve had my ups and downs. My fair share of bumpy roads and heavy winds. That’s what made me what I am today. Now I stand here before you. What you see is a body crafted to perfection. A pair of legs engineered to defy the laws of physics and a mindset to master the most epic of splits.”

My selfhosted instance is still working. I’m the only user which probably helps it from getting flagged. If they manage to kill Piped and the other similar options, YouTube is dead to me.