notdeadyet@lemmy.dbzer0.comOPtoSelfhosted@lemmy.world•Jellyfin, Caddy, and Cloudflare Real IPEnglish
2·
5 months agoI have followed that guide which let me to a few GitHub issues.
Here is what I have put in my config:
servers {
trusted_proxies cloudflare {
interval 12h
timeout 15s
}
trusted_proxies static private_ranges
client_ip_headers Cf-Connecting-Ip X-Forwarded-For
}
}
I have also added all Cloudflare IPs in Jellyfin’s known proxies:
103.21.244.0/22, 103.22.200.0/22, 103.31.4.0/22, 104.16.0.0/13, 104.24.0.0/14, 108.162.192.0/18, 131.0.72.0/22, 141.101.64.0/18, 162.158.0.0/15, 172.64.0.0/13, 173.245.48.0/20, 188.114.96.0/20, 190.93.240.0/20, 197.234.240.0/22, 198.41.128.0/17
Yet, I’m still not seeing the real IPs.
Do you know of a way to have a global caddy setting to only allow Cloudflare IPs, but “exempt” Jellyfin?
(I posted my caddy cloudflare section down below which only works as a global setting)