I have a Jellyfin instance on my local server which I forward to the public web via a cloudflare tunnel. I’m not sure how secure it is, and I keep getting random requests from all over the world. It’s my first experience maintaining something on a public domain so I may be worrying about something obvious, but some advice would still be appreciated.

My SSL/TLS encryption mode appears to be “Full”.

  • navigatron@beehaw.org
    link
    fedilink
    English
    arrow-up
    2
    ·
    10 months ago

    You can reduce doorknob turning dramatically by running on a non-standard port.

    Scanners love 80 and 443, and they really love 20, but not so much 4263.

    I used to run a landing page on my domain with buttons to either the request system / jellyfin viva la reverse proxy. If you’re paranoid about it, tie nginx to a waf. If you’re extra paranoid, you’ll need some kind of vpn / ip allow-listing