2025-04-13, 07:46 PM
If you go to port 8096 you are bypassing Caddy. Port 8096 is Jellyfin's http port. When you omit the port, just about all browsers will default to https on port 443, which is the port Caddy listens on. When going through Caddy on port 443 that is when the connection is encrypted.
Further more, you should NOT be port forwarding 8096 to avoid the possibility of remote connections going directly to Jellyfin unencrypted http port. You do not need to port forward since Caddy will be handling external connections. And you do not need to port forward for local clients to be able to access port 8096.
Additionally, you do not need to port forward port 80. This, again, avoids the possibility of unencrypted external connections. Caddy does not need the port for certificate requests.
Further more, you should NOT be port forwarding 8096 to avoid the possibility of remote connections going directly to Jellyfin unencrypted http port. You do not need to port forward since Caddy will be handling external connections. And you do not need to port forward for local clients to be able to access port 8096.
Additionally, you do not need to port forward port 80. This, again, avoids the possibility of unencrypted external connections. Caddy does not need the port for certificate requests.
Jellyfin 10.10.7 (Docker)
Ubuntu 24.04.2 LTS w/HWE
Intel i3 12100
Intel Arc A380
OS drive - SK Hynix P41 1TB
Storage
4x WD Red Pro 6TB CMR in RAIDZ1
![[Image: GitHub%20Sponsors-grey?logo=github]](https://img.shields.io/badge/GitHub%20Sponsors-grey?logo=github)
Ubuntu 24.04.2 LTS w/HWE
Intel i3 12100
Intel Arc A380
OS drive - SK Hynix P41 1TB
Storage
4x WD Red Pro 6TB CMR in RAIDZ1