This is an AB problem in which you're going to eventually solve the actual problem that isn't actually systemd after looking real hard at ways to replace systemd.
Or else you're going to find yourself in an increasingly painful maintenance process trying to retrofit rc scripts into constantly evolving distributions.
There's a lot I prefer about the old SysV, and I'm still not thrilled that everything is being more dependent on these large monolithic daemons. But I've yet to find a systemd problem that wasn't just me not knowing how to use systemd.
.local is reserved for mDNS responses, don't use that.
It's more than best practice. Your active directory controllers want to be the resolvers for their members, separate from other zones such as external MX records or the like. Your AD domain should always be a separate zone, aka a subdomain. "ad.example.com".
If your DCs are controlling members at the top level, you'll eventually run into problems with Internet facing services and public NS records.
Also per below. You can't get commercially signed certificates for fake domains. Self hosting certificate authorities is a massive pain in the ass. Don't try unless you have a real need, like work-related learning.
Install the nginx proxy manager add-on, set up let's encrypt for certificates and DuckDNS for name resolution, forward a port from your router. No need for homekit or a full vpn.
I dunno, I have the unfortunate experience of association with a lot of libertarian types. All of them believe we're in serious danger, all of them believe it's too late, and all of them are leaning hard into that "fuck you I got mine" mentality because it's too late for anything else.
They do nothing to help except vote libertarian or green.
This is an AB problem in which you're going to eventually solve the actual problem that isn't actually systemd after looking real hard at ways to replace systemd.
Or else you're going to find yourself in an increasingly painful maintenance process trying to retrofit rc scripts into constantly evolving distributions.
There's a lot I prefer about the old SysV, and I'm still not thrilled that everything is being more dependent on these large monolithic daemons. But I've yet to find a systemd problem that wasn't just me not knowing how to use systemd.