2023-12-16, 09:14 PM
Thanks for posting all this! I decided I wanted a proper SSL/TLS cert today and encountered most of the same issues you had. In the end, I generated a certificate with Let's Encrypt using the DNS verification method. You can do this without any proxying though, and it works with internal DNS. You can give Jellyfin a host name like jellyfin.internal.yourdomain.com and as long as you own yourdomain.com, you can issue certificates for subdomains. In my case jellyfin.internal.yourdomain.com isn't even a public DNS record, it is resolved by my router only. I use Cloudflare for my DNS, which has an API for this kind of thing. So you use the Let's Encrypt ACME program, give it your API token etc, and you're good to go! 