this is along the lines of what i am thinking: wireguard server on linode instance. wireguard client on home node. All traffic is routed to linode instance and public IP of node is the linode wireguard server. if wireguard goes down then only tor traffic is permitted
Minor nit: wireguard is p2p, so all instances are peers (no client/server), but you clearly have a grasp of the overall concept
Here’s a guide that may help (ignore the multiple node pieces of that doesn’t apply to you):
reply