Can you elaborate? I’ve been trying to find a way to expose jf to the Internet safely without a VPN, and I’m getting mixed messages from people.
I just got a cloudfare domain the other day actually.
Comment on That's all folks, Plex is starting to charge for sharing
gdog05@lemmy.world 2 months agoCloudflare tunnel and a domain name will stream Jellyfin to any device while delivering a decent amount of safety.
bktheman@awful.systems 2 months ago
gdog05@lemmy.world 2 months ago
It depends on how you’re hosting Jellyfin. The easiest and most common way is via Docker in some form. You can also install a docker image of Cloudflare tunnel making sure it’s on the same virtual network as Jellyfin (I think it will by default). However you’re running Jellyfin, Cloudflare tunnel will need to be able to reach your local Jellyfin install.
Create a tunnel in the Cloudflare zero trust dashboard, create or edit the config file for your Cloudflare tunnel install using the code string from the zero trust dashboard, your tunnel will attempt to connect to the Cloudflare servers, when it does, you have a secure tunnel. Then you can add hostnames on the zero trust dashboard, using your local IP addresses and ports. For example, jellyfin.yourdomain.com points to 192.168.1.10:8096. The tunnel connects your local IP to the routing from your domain.
Be careful to not open this up to apps that don’t have security in some form at least. There are ways to improve security on your tunnel end with SWAG and such. And I recommend turning on the security tools in Cloudflare so your domain can’t be accessed outside of your country at the least, and maybe even whitelisting IP addresses for even more security.
SpaceInvaderOne on YouTube has a good video on creating a Cloudflare tunnel via Unraid. But everything is much the same in regular docker. I’m sure there’s good videos on doing it however you’re hosting Jellyfin. Feel free to reach out with questions, I’ll gladly help if I can.
farngis_mcgiles@sh.itjust.works 2 months ago
thanks for this
bktheman@awful.systems 2 months ago
Amazing thank you, when I get time to sit down with this I will probably have more questions!
Nibodhika@lemmy.world 2 months ago
It’s against Cloudflare TOS to stream video.
bktheman@awful.systems 2 months ago
At all? Even just using their reverse proxy?
Nibodhika@lemmy.world 2 months ago
Unless you host the videos with them an use their Stream solution yes.
Evotech@lemmy.world 2 months ago
It’s against tos to stream video you don’t own the rights to
Nibodhika@lemmy.world 2 months ago
It is against Cloudflare TOS to stream video through them.
gdog05@lemmy.world 2 months ago
No it’s not. It used to be. They removed that part of the TOS about video streaming back in 2023.
Nibodhika@lemmy.world 2 months ago
It’s not completely gone, it’s just that now they offer you a way to do it, here’s some doc about it:
Source: blog.cloudflare.com/updated-tos/
Source: …cloudflare.com/…/delivering-videos-with-cloudfla…
In short, streaming videos hosted on your server is still against TOS, but they now offer a thing called Stream where you can host videos to be streamed without violating it.
gdog05@lemmy.world 2 months ago
That’s for the CDN. It’s about serving static, cached content faster. I actually tried to pay and use their Stream service, but it’s only to be used for serving video in a when page. While they’ve not directly clarified on the topic (even after being asked directly in the forums several times), don’t turn on caching and it appears to serve the language they’ve used in the updated TOS. I’m not a lawyer here, but parse that all as you will. Don’t take up storage on their CDN and they seem to be happy. I actually did buy some domain names through them to make sure I’m not just using their services without giving anything back. But, that’s a matter of conscience.
Evotech@lemmy.world 2 months ago
I’m assuming you don’t just stream home made movies
Stemming pirated Covent is against tos
gdog05@lemmy.world 2 months ago
Who’s to say what content I stream. You do you, boo.