this post was submitted on 16 Mar 2024
12 points (100.0% liked)

Selfhosted

40437 readers
623 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

I feel like I have a doozy of a complicated issue and am looking for some guidance.

I'm new to Selfhosting so I got myself an off-the-shelf Asustor NAS. It's got apps which is cool, so I've installed Jellyfin. I want to access my Jellyfin over the web so I've set up DDNS via my Asusstor Manual Connect and FreeDNS. This works well, I can access it over HTTP but the domain is... kind of long and unpleasant, so I got myself a "pretty" domain and setup a CNAME to the FreeDNS. I'm port forwarding on my router, everything works, so far so good.

To make it overtly complicated, I want to make the connection HTTPS. This is where I'm struggling. I've set up the SSL cert for my "pretty" domain via Lets Encrypt, but it times out. I'm not sure if, or how I can make the FreeDNS HTTPS or covered under my Lets Encrypt cert since I don't technically own the FreeDNS domain. My provider doesn't give my any wildcard options on the "pretty" domains cert either.

I've got the HTTPS set on my Asustor and Jellyfin based on the "pretty" domains SSL cert. I've got my port-forwarding 443 to Jellyfins suggested HTTPS port on my router. I feel like the lynchpin is the FreeDNS subdomain handing off the DDNS request but I'm not sure how to solve it. Any suggestions on how I can get this setup to work? Anyone else run a similar setup where they access their local X port via the web via HTTPS?

Open to similar experiences, suggestions, ideas, pretty much anything at this point.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 5 points 8 months ago (1 children)

Lets Encrypt should be fine issuing a cert on a FreeDNS hostname using the HTTP-01 challenge, I believe you may also need port 80 open?

The basic steps would be install a letsencrypt client on the NAS, issue a cert for the FreeDNS hostname, then give that cert to jellyfin directly or to a reverse proxy sitting in front of it.

[–] ProtecyaTec 1 points 8 months ago

I do have port 80 open as well as 443, both going to my Jellyfin HTTP/HTTPS ports respectively. HTTP seems to work for both when I access "pretty" domain and the FreeDNS URLs directly. It's really only when I try to force HTTPS that I'm having issues.

I'll play around with Let's Encrypt today to see if I can get the FreeDNS cert applied. I've tried to use AI to assist me in learning how to do all this, it suggests I need both my "pretty" domain and the FreDNS domain tied to the same Cert, which Im unable to do at my current domain registrar, so I might also need to move that but I'll take it one step at a time.