Hey guys!
1. The problem I’m having:
I own a domain with the following CNAMEs:
Because I have a dynamic IP at the server location I point my domain to DuckDNS which gets updated by a (the offical I guess) DuckDNS container.
Jellyfin as well as Caddy also run in a container on my server.
I can connect to my jellyfin instance remotely via Browser, via IOS. Outside and inside of my network.
But I cannot connect to Jellyfin remotely via Android or AndroidTV. I can only connect to Android devices when I’m inside my network with the local ip (http://192.168.178.31:8096/)
2. Error messages and/or full log output:
curl https://jellyfin.notReallyMySite.com/jellyfin/system/info/public -vI
main 0a72092
* Host jellyfin.notReallyMySite.com:443 was resolved.
* IPv6: 2a02:560:5394:1800:a53e:a53e:a53e:a53e
* IPv4: 89.182.11.111
* Trying [2a02:560:5394:1800:a53e:a53e:a53e:a53e]:443...
* Trying 89.182.11.111:443...
* Connected to jellyfin.notReallyMySite.com (89.182.11.111) port 443
* ALPN: curl offers h2,http/1.1
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: none
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_CHACHA20_POLY1305_SHA256 / x25519 / id-ecPublicKey
* ALPN: server accepted h2
* Server certificate:
* subject: CN=jellyfin.notReallyMySite.com
* start date: Jan 17 14:09:36 2024 GMT
* expire date: Apr 16 14:09:35 2024 GMT
* subjectAltName: host "jellyfin.notReallyMySite.com" matched cert's "jellyfin.notReallyMySite.com"
* issuer: C=US; O=Let's Encrypt; CN=R3
* SSL certificate verify ok.
* Certificate level 0: Public key type EC/prime256v1 (256/128 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 2: Public key type RSA (4096/152 Bits/secBits), signed using sha256WithRSAEncryption
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* using HTTP/2
* [HTTP/2] [1] OPENED stream for https://jellyfin.notReallyMySite.com/jellyfin/system/info/public
* [HTTP/2] [1] [:method: HEAD]
* [HTTP/2] [1] [:scheme: https]
* [HTTP/2] [1] [:authority: jellyfin.notReallyMySite.com]
* [HTTP/2] [1] [:path: /jellyfin/system/info/public]
* [HTTP/2] [1] [user-agent: curl/8.6.0]
* [HTTP/2] [1] [accept: */*]
> HEAD /jellyfin/system/info/public HTTP/2
> Host: jellyfin.notReallyMySite.com
> User-Agent: curl/8.6.0
> Accept: */*
>
< HTTP/2 404
HTTP/2 404
< alt-svc: h3=":443"; ma=2592000
alt-svc: h3=":443"; ma=2592000
< date: Thu, 01 Feb 2024 22:31:43 GMT
date: Thu, 01 Feb 2024 22:31:43 GMT
< server: Caddy
server: Caddy
< server: Kestrel
server: Kestrel
< x-response-time-ms: 5
x-response-time-ms: 5
<
* Connection #0 to host jellyfin.notReallyMySite.com left intact
PASTE OVER THIS, BETWEEN THE ``` LINES.
Please use the preview pane to ensure it looks nice.
3. Caddy version:
v2.7.6
4. How I installed and ran Caddy:
I followed the offical docker installation, this is my docker-compose.yml
GNU nano 6.2 docker-compose.yml
version: "3.9"
services:
caddy:
image: caddy:latest
restart: unless-stopped
ports:
- "80:80"
- "443:443"
- "443:443/udp"
volumes:
- ./Caddyfile:/etc/caddy/Caddyfile
- ./site:/srv
- caddy_data:/data
- caddy_config:/config
networks:
- caddy
volumes:
caddy_data:
caddy_config:
networks:
caddy:
external: true
a. System environment:
I run proxmox where this server runs as a VM with ubuntu 22.04.
b. My complete Caddy config:
This is my Caddyfile:
{
email admin@notReallyMySite.com
}
portainer.notReallyMySite.com{
reverse_proxy portainer:9000
}
git.notReallyMySite.com {
reverse_proxy gitea:3000
}
cloud.notReallyMySite.com {
reverse_proxy nextcloud-nextcloud-app-1:80
}
video.notReallyMySite.com {
reverse_proxy invidious-invidious-1:3000
}
immich.notReallyMySite.com{
reverse_proxy immich_server:3001
}
search.notReallyMySite.com {
reverse_proxy searxng:8090
}
jellyfin.notReallyMySite.com {
reverse_proxy jellyfin:8096
}
I changed my Domain name and my public ip as I don’t feel comfortable sharing it I hope thats ok even tho it mentioned that it isn’t.
Thanks in advance for taking your time and helping me, really appreciate it!