You should never have had to endure that in the first place though! Amurica needs workers rights now! Note that the misspelling is intentional because this is a place I stay in. There's no living or thriving in Amurica unless you're wealthy.
As long as employment is at will, I will say fuck you to employers as quickly as they say fuck you to me. That's the way it works. You want loyalty, show some in return.
Right now the internal DNS I use has a TLD of .lan but that's pretty much for my personal convenience. I access my websites by their FQDN internally with no issue. So I am not sure what your tring to achieve. Mind elaborating?
In effect, Cloudflare would give protection against DDoS attacks before requests would even hit your servers. That much said you can implement mitigations on the reverse proxy itself. One example would be fail2ban.
I'm sure there are additional steps that you can take. I'm not a fan of Cloudflare because their free offering has some caveats and violating these could be problematic. I have a cloud VPS with a WireGuard tunnel back to my server. I don't have to do anything ugly like port forwarding. The cloud VPS runs NGINX as a reverse proxy. It's a relatively simple and effective setup.
I like the idea of a federated, ActivityPub-based version control systems that work with git. Here lies the problem: Microsoft has not done quite enough to inflict pain on developers just yet. As I begrudgingly concede, MS has been by and large friendly to github members, even the non-paying ones.
I get this to a certain extent. But if Amazon makes absolutely no effort to police its platforms, then it should be able to be sued for potential defamation, libel, etc. Amazon cannot have total immunity from responsibility. I am not a lawyer but I think there is a legal term for things like this called, "Best Effort." I am more familiar with criminal law than civil law though.
Is the black kitty a Scottish Fold?