Yep, that way you can set ACLs, you they can only access the jellyfin ports + the ports you allow them to.
Also, tailacale DNS.
Comment on Jellyfin docker outside of lan.
iHUNTcriminals@lemm.ee 11 months agoYeah I’m thinking maybe just have family sign up for tailscale.
SuddenlyBlowGreen@lemmy.world 11 months ago
manwichmakesameal@lemmy.world 11 months ago
Why not just run your own WireGuard instance? I have a pivpn vm for it and it works great. You could also just put jellyfin behind a TLS terminating reverse proxy.
dinosaurdynasty@lemmy.world 11 months ago
Sounds like a pain to get non technical family members to use. If you’re willing to break the non web app you could always put it behind an authenticating proxy (which is what I do for myself outside of VPN, setting up a VPN on a phone is obnoxious and I only look at metadata anyway on my phone)
kratoz29@lemm.ee 11 months ago
CGNAT is a big reason.
Gooey0210@sh.itjust.works 11 months ago
Or headscale, works like a charm