this post was submitted on 04 Feb 2025
1 points (100.0% liked)

Self-Hosted Alternatives to Popular Services

224 readers
2 users here now

A place to share, discuss, discover, assist with, gain assistance for, and critique self-hosted alternatives to our favorite web apps, web...

founded 2 years ago
MODERATORS
bot@lemmit.online
1
What Cloudflare custom WAF rules do you use for your Jellyfin website? (old.reddit.com)
submitted 7 months ago by bot@lemmit.online to c/selfhosted@lemmit.online
0 comments fedilink hide all child comments
 
This is an automated archive made by the Lemmit Bot.

The original was posted on /r/selfhosted by /u/Kazumadesu76 on 2025-02-03 11:28:55+00:00.

I’ve gotten a ton of unwanted traffic to my Jellyfin website and have had some brute force attacks, and I need to come up with some cloudflare rules to make them stop.

I currently have 3 rules:

  1. Allow my IP address
  2. Block all countries except my own
  3. Block all types of verified bot categories and HTTP versions 1, 1.1, 1.2, 2.

That last one seems to mess with my Jellyfin configuration a bit, because I can’t get Jellyseerr to submit requests to Prowlarr. It also prevents the Jellyfin app from working on my tv.

I’d like to see what rules you guys use so that I can improve my own and stop getting so many attack attempts.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here