homelab

PLEXodus: Rebuilding My Media Server With Jellyfn

Jack Wilson

Jack Wilson

6 min read
PLEXodus: Rebuilding My Media Server With Jellyfn

This was supposed to be a pretty basic article detailing my process of switching my media server away from Plex and over to Jellyfin. The process of switching the server itself was super simple: I already had my media libraries set up, already had an instance of Jellyfin available (just disabled and unused), and am quite familiar with what's going on with my NAS and home network so the remaining handful of tasks to fully switch everything over were pretty simple to complete.

What I had not factored in was the process of setting up remote access to my media server for my parents, which led me down several interconnected rabbit holes for tools and services I was generally aware of and had largely planned to toy around with in the future. Most of this was not particularly necessary in order to get Yellowstone to stream to my dad's TV, but had a lot of benefits for usability, organization and security while also turning into a fun (and occasionally wildly frustrating) learning experience.

I had been a Plex user since somewhere around 2017 and have been increasingly annoyed with the direction it had been going in the last couple of years. Despite offering a free tool, Plex is a business and makes decisions accordingly. That means they need to generate revenue. This is expected and perfectly fine, provided the usability and functionality of the core media server tool was relatively untouched and continued as expected. However, features started to trickle in to my server that were becoming annoying - namely:

  • The push for their own ad-supported streaming content, which I completely disabled.
  • The push to become a hub for all of a user's streaming services, which is extra annoying because Plex clients are already apps installed on the devices that already run all of my streaming services. Netflix is already on my Shield.
  • The mobile app redesign.
    • Bonus gripe: Downloads still don't really work.
  • The increasing cost of the Plex Pass and the overall enshittification of the service as they move towards more of a SaaS model.

I stopped using my Plex instance last April after remote access was disabled for non-Plex Pass users (although it does look like Remote Access is now available as a subscription). The Plex Pass itself also had a major price hike. I was always on the fence about it, especially at full-cost. I only run my server for me and my parents. Hardware transcoding probably would have been nice, but I never noticed many issues, especially since picking up an NVIDIA Shield and getting it connected through my stereo receiver to handle audio. If I'd managed to pick up a dirt cheap Plex Pass during one of the sales years ago, I'd probably still be using Plex.

📺
Quick brag, because nobody I know will give a shit:

I bought my 2017 NVIDIA Shield for a dollar. It was buried in a pile of miscellaneous cables and PC parts in a local estate auction. I happened to click on the listing and flipped through the image to notice a suspiciously angular black box in one of the photos and placed a winning $1 bid alongside bids for a few other lots. It had the power cord and controller cord but was missing the controller and remote. I dusted off my Logitech Harmony hub and remote and got it linked up the the Shield without any issues. As a pleasant bonus, I ended up with a handful of useful cables and adapters, and was able to sell a few other items for well over the few bucks I paid for everything.

More recently I had my "oh fuck off Plex" moment and completely deleted my server and account. I happened to check Plex and was greeted with this frankly insulting message.

Why the fuck would anybody agree to that? That was the nail in the coffin for my career as a Plex admin.

So we're all-in on Jellyfin. As mentioned, I already had an instance active, but a fresh install is basically:

  1. Set up Docker container
  2. Start Docker container
  3. Point Jellyfin at media folders
  4. Fiddle with a few settings
  5. Install Jellyfin apps on my TV clients
  6. Watch Yellowjackets
    1. Be made to feel uneasy
    2. Continue watching Yellowjackets
      1. What the fuck is up with the woods?
  7. Repeat step 6 with other shows

The issue is remote access. Plex handles all of this for you. Set up your server, maybe open a single router port, share it and you're good to go. Sharing externally and accessing your library remotely Just Works™.

With Jellyfin, it's all up to you. Such is the cost of FOSS.

Easy Mode

Easy mode is to use Tailscale. I've already been using it for a while and love it. Install Tailscale on my NAS, then install Tailscale on a remote PC, and suddenly the remote machine thinks it's on my home network and can access Jellyfin as such.

For my parent's house, I've reconfigured my old Zotac AD11 HTPC (with a blazing 4GB of RAM) with Debian and Tailscale, and will install it at my parents' house then use the subnet router function to make their smart TVs think they're on my home network.

I have not installed the HTPC yet, but don't really expect any issues. Then again, I've never used the subnet router function so who knows.

Medium Mode

  1. Create a free Oracle Cloud VPS account
    1. Create an Ubuntu Server virtual machine
    2. Install Pangolin as a reverse proxy/tunnel server
    3. Connect Pangolin to my server
    4. Connect my domain to Pangolin via Cloudflare
    5. Point Pangolin to Jellyfin and configure remote access
  2. Sign in to Jellyfin at my parents' house
    1. Use the Jellyfin Quick Connect feature to sign in to the Jellyfin apps on their TVs
  3. Let my dad fawn over Kevin Costner.

Hard Mode

Hard mode, which is obviously what I did, is:

  1. Create a free Oracle Cloud VPS
    1. Repeat Step 1 in Medium Mode
    2. Make a complete mess of my Oracle account
    3. Abandon, wait for account to be removed so I can make a new one and try again
  2. Decide to set up a reverse proxy
    1. Set up Nginx Proxy Manager
    2. Decide I'm too much of a n00b to safely open ports
    3. Get scared, abandon
  3. Decide I now want tidy local domain names instead of IP addresses and Ports
    1. Realize I'm going to need NPM
      1. Set up Nginx Proxy Manager again
    2. Purchase a domain for just in-home services
      1. Set up the new domain with Cloudflare for safe access
      2. Notice a bunch of bots from Western Europe probing around, mostly trying to hit WordPress page paths
        1. Block all non-Canadian traffic
      3. Set up any and all other security measures on the free Cloudflare plan
    1. Need a DNS service for local domains
      1. Set up Pihole, which has been on my list forever as a very low priority
      2. Decide I'm this far so I might as well set up network ad blocking
    2. Point my router at my Pihole
    3. Destroy my internet connection for an hour
      1. Panic
      2. Fix
    4. Set up a backup Pihole
      1. Set up a service to sync them
    5. Set up tidy local domains
  4. Realize that since NPM is still exposed to the internet
      1. Decide to install single sign-on and authentication
      2. Install Authentik
        1. Realize that I need an email server
    1. Set up a free Mailgun account
      1. Integrate with domain name
      2. Realize I've locked myself out of this website
      3. Integrate Mailgun with website
        1. Successfully reset password
    2. Spin up Authentik
      1. Get Authentik roughly configured with: 2FA, 2fa time periods, CAPTCHA bot detection and Forgotten Password emails
      1. Connect to conveniently recently made Mailgun account
      2. Pull hair out trying to get email to work
      3. Forgotten Password emails magically work a few days later
    1. Realize NPM has rules for local vs external access
      1. Apply rules
      2. Keep Authentik anyway
  5. Set up tidy domain names for several services
    1. Start to reconfigure other services to point back at each other via domain names
    2. Realize some services are problematic
      1. Also realize that I don't really care about a tidy domain name for qBittorrent
  6. An update breaks NPM
    1. Remember that this is why we disable auto-updates on important services.
    2. Scramble to fix.
    3. Roll back version to fix. Figure out roughly to do the fix, but decide to stick with the older version until a permanent fix is available because I am a Linux command line novice.
  7. Get email from Oracle Cloud that account has been deleted (which was requested)
    1. Realize Oracle probably isn't letting me create another free account
      1. Curse failures
      2. Make note to try again later
    2. Consider buying a VPS
      1. Will probably not bother
    3. Try again later
      1. Different address, different email, different credit card, different IP address and location via a VPN: no dice.
      2. Give up.
  8. Provide fiancée with access to some services
    1. Assume she will not use them
    2. She notes that the internal wiki would be nice to use.
  9. Set up Jellyfin to use tidy domain name
  10. Still use Tailscale for parents
  11. Watch Yellowjackets
      1. Be made to feel uneasy
      2. Continue watching Yellowjackets
    1. Repeat step 11 with other shows

And it's just THAT easy.




Find this helpful and/or entertaining?

Consider buying me a coffee.


Buy Me A Coffee

Read more