Access to HomeAssistant server running on local VPN client

Hi ,

My this is confusing. I have a DO Droplet running Algo (Wireguard) VPN. All works fine and VPN accessible with clients talking to each other and the www.

Ok, so now I want to be able to point a browser at my DO droplet and access my HomeAssistant server running a VPN client behind my LAN ISP router. So after much reading I figured out-

1. I neeed to open up port 8123 on my DO Firewall attached to the droplet,
2. Using Access Console, login as root.
3. Forward all traffic on interface eth0 port 8123 to my VPN client.
4. The VPN client is behind my ISP Router on a LAN.
5. The VPN client is 10.19.49.6:8123
6. VPN client interface is wg0
7. VPN server (DO Droplet) interface is wg0.
8. VPN external interface is eth0
9. VPN IP is (public, private, floating - not sure??)
10. Allow VPN client to communicate back to the DO server and the wwww.

As I say, currently as is well, but I cannot get this working. I have tried these with no success:

https://www.digitalocean.com/community/questions/how-to-port-forward https://www.digitalocean.com/community/questions/port-forwarding-with-dynamic-private-address https://www.digitalocean.com/community/questions/is-it-possible-to-port-forward-if-so-is-it-allowed-to-host-a-gameserver

So I must be doing something wrong. I question whether I should be using the publicIP , or my Floating IP but the floating IP is not listed on any of the three interfaces (eth0, lo, wg0) - wg0 is the VPN network 10.19.49.0/8

I have now reset iptables and ufw, giving up and coming here for help.

Help!