this post was submitted on 26 Jun 2025
460 points (97.9% liked)

Selfhosted

48720 readers
1234 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
460
Jellyfin over the internet (startrek.website)
submitted 2 days ago by [email protected] to c/[email protected]
275 comments fedilink hide all child comments
 

What’s your go too (secure) method for casting over the internet with a Jellyfin server.

I’m wondering what to use and I’m pretty beginner at this

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 1 points 6 hours ago

I use mTLS by adding a reverse proxy between Jellyfin and the Inet. This makes it hard to use the app, but works perfect with a browser. If you still want to use the app. There is a solution by using stunnel (termux) between te app and the Inet or better, a wireguard VPN.

[–] [email protected] 4 points 6 hours ago (1 children)

For now just Tailscale but I'm working on setting up a reverse proxy and SSO through Authentik

[–] [email protected] 2 points 6 hours ago* (last edited 6 hours ago)

Even more secure is having a VPS and self hosting Heascale, even better is Wireguard

[–] [email protected] 4 points 11 hours ago (1 children)

Sad that mTLS support is non existent because it solves this problem.

[–] [email protected] 1 points 6 hours ago

It would cover all phones, pcs and maybe Android TVs.

The barrier to entry would be having to replace the cert every year since we now made that a thing. Maybe spin up a self-sign shirt server and start issuing people 10 years certs

[–] [email protected] 42 points 18 hours ago (3 children)

I just expose my local machine to the internet, unsecured

[–] [email protected] 1 points 7 hours ago* (last edited 7 hours ago) (1 children)

Yea same I don’t even care.

It’s an old laptop, I have a backup. Go ahead, fuck it up.

[–] [email protected] 1 points 6 hours ago

Do you at least have it on a VLAN?

[–] [email protected] 4 points 10 hours ago

This is absolutely unhinged but god damn it, I respect you.

[–] [email protected] 13 points 18 hours ago

Thanks stranger over the internet seems like the best option.

[–] [email protected] 16 points 23 hours ago (1 children)

Tailscale with self hosted headscale

[–] [email protected] 1 points 10 hours ago (1 children)

Any helpful tips or links to tutorials for this method?

[–] [email protected] 2 points 5 hours ago

Easiest method is Docker, but it heavily depends on your network and tech stacks.

load more comments
view more: next ›