Just for my own education, if you don’t mind - how were you able to tell someone was hammering on the port if it was closed? Would fail2ban have been an option to stop them?

What if I want a bunch of people to be able to log into my library via Finamp?

Haha okay, thanks! And I’d just forward ports 80 and 443 from the router to ports 80 and 443 on the Pi’s internal IP address in the router settings, right?

My preference would be to avoid Tailscale, but I’ll check it out. Thanks!

I have not. What is it?

Thanks for the tip! I’ll back the refresh rate off to be safe.

I’m not sure I entirely understand your concern about putting Jellyfin on the internet. A large part of my interest in selfhosting is being able host my own music library, my own cloud storage, etc, and access it as an alternative to Spotify or Google Drive. Doesn’t that inherently mean that they need to be on the internet, if I want to be able to access them when I’m away from home?

My goal has been to find a way to do that safely, but if that’s not possible, that’s good to know too, so I don’t keep trying to do the impossible.

I’d like to be able to share it with friends and family

Correct. I’d like to make it available to myself and any family members or friends I share it with, but not the wider world

Oh, the healthy paranoia isn’t the issue haha

I just want to be able to figure out how to configure my system to be able to safely expose a single service for my use away from home. Because I’d like to eventually expand from Jellyfin to Nextcloud and Vaultwarden as well, but I know I’m not there yet

Thank you! What is the most beginner-friendly way to do that?

I’ve been trying to figure this all out for so long, but it feels like every time I overturn one stone I discover there’s another setting or program I need to configure that I didn’t know about