+- Jellyfin Forum (https://forum.jellyfin.org)
+-- Forum: Support (https://forum.jellyfin.org/f-support)
+--- Forum: General Questions (https://forum.jellyfin.org/f-general-questions)
+--- Thread: Can't access JF when on a VPN? (/t-can-t-access-jf-when-on-a-vpn)
Pages:
1
2
RE: Can't access JF when on a VPN? - 4r5hw45twh - 2024-10-08
(2024-10-08, 02:37 PM)TheDreadPirate Wrote: It really isn't that complicated to get this to work. There has to be something you aren't mentioning.
CF subdomain CNAME -> CF domain A/AAAA record for public WAN IP -> router port forwards https 443 -> Caddy -> jellyfin 8096
Things that can break this:
- Misconfigured DNS/adblocker/pihole
- Incorrect public IP
- CGNAT
- VPN not configured to split tunnel
- Misconfigured default route
- Incomplete IPv6 setup. ISP, router, host, jellyfin all need to support IPv6 and have it enabled.
Yeah, that's how I have it setup. Which works fine, until I try connecting to the server while on VPN network on other devices.
My server PC is on VPN with a specific IP. My mobile devices are connected to a dedicated WiFi network that's also on its own VPN IP/server. When I'm not connected to my VPN WiFi network, I can connect fine. Acts the same even when my server PC has VPN turned off. Same if Split Tunneling is on/off
RE: Can't access JF when on a VPN? - TheDreadPirate - 2024-10-08
For testing, can you turn off proxying on your domain? I know you set the CNAME for the jellyfin subdomain to DNS only, but I want to verify there isn't something else going on. I know that CF can block known VPN exit nodes so I want to be absolutely certain this isn't a factor by switching everything to DNS only across the board.
The other possibility is NetShield, built into ProtonVPN. Is PVPN blocking your domain or something?
RE: Can't access JF when on a VPN? - 4r5hw45twh - 2024-10-08
(2024-10-08, 04:47 PM)TheDreadPirate Wrote: For testing, can you turn off proxying on your domain? I know you set the CNAME for the jellyfin subdomain to DNS only, but I want to verify there isn't something else going on. I know that CF can block known VPN exit nodes so I want to be absolutely certain this isn't a factor by switching everything to DNS only across the board.
The other possibility is NetShield, built into ProtonVPN. Is PVPN blocking your domain or something?
I always have NetShield disabled and my domain is already DNS-only. Like I said, even when my server VPN is turned off, the same issue happens (if connecting on my devices that are also using a separate VPN)
RE: Can't access JF when on a VPN? - TheDreadPirate - 2024-10-08
I was referring to the client side VPN. Whether they are connected to the WIFI VPN or on cellular with ProtonVPN turned on.
Regardless, I don't have enough information to direct my questioning further.
RE: Can't access JF when on a VPN? - 4r5hw45twh - 2024-10-08
(2024-10-08, 07:42 PM)TheDreadPirate Wrote: I was referring to the client side VPN. Whether they are connected to the WIFI VPN or on cellular with ProtonVPN turned on.
Regardless, I don't have enough information to direct my questioning further.
I have my VPN off when on cellular. But if you're saying to turn it on while on cellular and try it, I can.
Side note: nothing changed on my server at all and I couldn't access my JF server even on a regular cellular network (which always was fine). I remember this happening with NGINX too when I got it to work one time. Troubleshooting didn't fix it so I restarted the server and now it works again. Why does this stuff only keep happening with JF specifically?
EDIT: A random VPN server I tried on cellular still allowed me to connect, but not the VPN on my home network (same provider).