Hairpin/Reflexive NAT Assistance

[Flerp]

I setup an OPNSense box as a replacement for an old SonicWALL and I'm struggling with NAT reflexively for https and game servers
On the old SonicWALL I'd setup a NAT Rule for a locally hosted website like so
Original Source: LAN Subnets
Translated Source: WAN1 IP
Original Destination: WAN1 IP or FQDN
Translated Destination: Reverse Proxy LAN IP
Service: http and https

This worked well, even though my web servers are cloudflare proxied, and then behind a reverse proxy routing to hosts via SNI
It would catch the traffic on the way out, heading towards the cloudflare proxy IP then redirect it immediately

I have been trying to setup something similar on OPNSense but I have failed repeatedly to get traffic to NAT this way

I also run several old game servers that refuse LAN connections and WAN connections at the same time, so they need to have reflexive rules, too
The NAT on OPNSense is seemingly split into a few different pieces instead of having single logical rules, being unable to translate both source and destination at the same time