this post was submitted on 26 Jun 2025

433 points (98.0% liked)

Selfhosted

48681 readers

2429 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.

Resources:

selfh.st Newsletter and index of selfhosted software and apps
awesome-selfhosted software
awesome-sysadmin resources
Self-Hosted Podcast from Jupiter Broadcasting

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago

MODERATORS

[email protected]

433

Jellyfin over the internet (startrek.website)

submitted 1 day ago by [email protected] to c/[email protected]

259 comments fedilink hide all child comments

What’s your go too (secure) method for casting over the internet with a Jellyfin server.

I’m wondering what to use and I’m pretty beginner at this

top 50 comments

sorted by: hot top controversial new old

[–] [email protected] 3 points 3 hours ago

Sad that mTLS support is non existent because it solves this problem.

[–] [email protected] 28 points 10 hours ago (2 children)

I just expose my local machine to the internet, unsecured

[–] [email protected] 3 points 2 hours ago

This is absolutely unhinged but god damn it, I respect you.

[–] [email protected] 11 points 10 hours ago

Thanks stranger over the internet seems like the best option.

[–] [email protected] 15 points 15 hours ago (1 children)

Tailscale with self hosted headscale

[–] [email protected] 1 points 2 hours ago

Any helpful tips or links to tutorials for this method?

[–] [email protected] 7 points 16 hours ago* (last edited 16 hours ago)

“Technically” my jellyfin is exposed to the internet however, I have Fail2Ban setup blocking every public IP and only whitelisting IP’s that I’ve verified.

I use GeoBlock for the services I want exposed to the internet however, I should also setup Authelia or something along those lines for further verification.

Reverse proxy is Traefik.

[–] [email protected] 7 points 17 hours ago (1 children)

Cloudflare. No public exposure to the internet.

[–] [email protected] 8 points 16 hours ago (2 children)

Are we not worried about their terms of service? I've been using pangolin

[–] [email protected] 5 points 13 hours ago

I run multiple enterprise companies through it who are transferring significantly more sensitive data than me. I'm not as strict as some people here, so no, I don't really care. I think it's the best service, especially for free, so until things change, that's what I'm using.

[–] [email protected] 5 points 15 hours ago (1 children)

We are, Batman, we are.

I VPN to my network for it.

[–] [email protected] 3 points 15 hours ago* (last edited 15 hours ago) (1 children)

I expose jellyfin and keycloak to the internet with pangolin, jellyfin user only has read access. Using the sso 🔌 jellyfin listens to my keycloak which has Google as an identity provider(admin disabled), restricting access to my users, but letting people use their google identity. Learned my family doesn't use anything that isn't sso head-to-toe.

It's what we do in the shadows that makes us heroes, kalpol.

[–] [email protected] 2 points 5 hours ago

First time I hear someone using keycloak for local hosting.

load more comments