Hello everyone, I have another question regarding reverse-proxying again, specifically for the linuxserver.io jellyfin image.
On the dockerhub page for this image there are 4 ports listed which should be exposed:
- 8096 for the HTTP Web UI
- 8920 for the HTTPS Web UI
- 7359/udp for autodiscovery of jellyfin from clients
- 1900/udp for service discovery from DLNA and clients
Additionally there is also an environment variable JELLYFIN_PublishedServerUrl
which is for “Setting the autodiscovery response domain or IP address”. I currently have that set to my subdomain https://jellyfin.mydomain.com
though I am not sure if that is correct.
I already have a reverse-proxy set up allowing me to access my servers webinterface under https://jellyfin.mydomain.com
without exposing the https port on the container. What I am unsure about now however, is what to do with the two ports for UDP traffic.
By my understanding, a reverse-proxy will only forward traffic which comes to the ports 80 for http and 443 for https. Those are also the only ports my reverse-proxy container has exposed alongside the management interface. As such the 2 udp ports will not be reachable under my jellyfin domain.
How can I change this or is this even an issue?
So far so good. The URL is correct, because its the external address. You also don’t need to publish both http and https ports. I only map external https to internal http but you can do https to https. No serious modern browser tries http first and because I always force https anyways, it doesn’t need to be public. Only the reverse proxy may need it, for Let’s Encrypt.
Both UDP aren’t needed for public access. I only have mapped 8096 to my reverse proxy and it works.