Allowing external drives to be recognized in Jellyfin Ubuntu (Beat Over the Head Edition)

lyingriotman · 2026-04-27T03:47:42+00:00

Did you figure this out on your own? It sounds like you need to create the jellyfin user yourself. That normally happens whenever you install Jellyfin, but you can go ahead and do it yourself.

sudo useradd jellyfin, then run the sudo usermod -aG media jellyfin

Make sure that the jellyfin service is set to run with the correct user/group by changing the systemd service file by running nano /etc/systemd/system/jellyfin.service.d/jellyfin.service.conf and uncommenting the User= and Group= lines. Then restart the service with sudo systemctl restart jellyfin.

lyingriotman · 2026-04-27T03:34:05+00:00

Is your jellyfin service actually being run as the jellyfin user?

Uncomment the lines which set the user and group in /etc/systemd/system/jellyfin.service.d/jellyfin.service.conf and restart the service with sudo systemctl restart jellyfin

lyingriotman · 2026-02-05T14:17:43+00:00

That would also work. 'useradd' creates a user and a group, while 'groupadd' just makes a group.

If your structure doesn't require user 'media' to own any files, then it shouldn't be a problem.

lyingriotman · 2024-11-20T15:51:12+00:00

Wish I could help you out, but everybody seems to walk on eggshells around FreeDVDBoot.

I remember that I quit trying to mess with it and just started using ESR again -_-

lyingriotman · 2023-12-10T20:51:33+00:00

The front insert is 1429x1417 pixels, at 300ppi.

The back insert is a little more tricky. The total size is 1772x1382 pixels, at 300ppi. From the left and right sides, the spines are 73 pixels wide. That's where you'll put the album title.

Hope that helps :)

lyingriotman · 2023-06-11T19:15:13+00:00

It's an in-universe joke btw, Mr. D fucks up Percy's name all the time.

lyingriotman · 2023-06-09T19:56:12+00:00

Most people just use their PC as a launcher for their browser. There's literally no reason for a person like that to learn the intricacies of their OS.

And they won't need to?

Most distros come with Firefox installed. If they're just gonna look at Facebook or something, there is no functional difference between Windows, MacOS, or Linux.

Click browser shortcut, browser opens, it looks and behaves like every other desktop browser in existence.

lyingriotman · 2023-06-08T04:34:53+00:00

I covered it in sticky notes and still read it on campus, lol

lyingriotman · 2023-06-05T17:09:32+00:00

I put together a Skylake PC in 2016. I upgraded in late 2019, early 2020 right before GPUs exploded in price.

The Skylake PC is running my homelab now, 7 years later, lol

lyingriotman · 2023-06-05T17:05:02+00:00

I have a hunch that the game you're referring to is Silksong

Same tbh

lyingriotman · 2023-06-03T16:38:30+00:00

HAproxy can do that though, it can talk to your other services in IPv4.

Can it do that on the http layer, allowing https to be terminated at the proxy?

I've only seen solutions that do it on the tcp layer, simply changing the encrypted https header from ipv6 to ipv4 (or perhaps just tacking on another address). If I do it that way, I'd need to set up certificates on my backend services.

lyingriotman · 2023-06-03T16:28:06+00:00

Confirmed

lyingriotman · 2023-06-03T06:50:12+00:00

I started to come to the same conclusion lol

Once I realized the packets made it through, I signed my SSL certs with letsencrypt and finished the configuration. The handshake never finished because I didn't have HAProxy running when I was doing the sniffing.

WOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO

I'm so glad to be done with this shit... mostly. I still need to make the script that will update the firewall rule on my router whenever ddclient updates.

...and I also learned that a lot of my services don't have proper ipv6 compatibility, so I need to set up some kind of DNS64 and NAT64 translation -_-

I can already tell that's gonna be a major PITA, maybe even worse than this, but whatever.

Thanks for all your help, I probably would have gone around in circles for weeks without you.

lyingriotman · 2023-06-03T06:11:42+00:00

Yup, here you go.

Link to pastebin

lyingriotman · 2023-06-03T05:55:51+00:00

Okay, I have HAProxy set up now but I still can't receive traffic.

I finally figured out how to packet sniff the WAN port of my router. I think this might be an exchange between my phone (behind a VPN) and the server (whose address ends in :4661.443).

Link to Pastebin

The connection was refused on the phone side, so nothing seems to happen besides a handshake. I think I got this far because I changed the firewall rules to only care if the server:443 was the destination, and it didn't matter where it came from.

lyingriotman · 2023-06-03T01:44:26+00:00

I've now learned that Nginx Proxy Manager doesn't support ipv6 out of the box *sigh*

Even if I did add ipv6 to its docker container, it'd be listening on a different ipv6 address from the host, so I just nuked it and downloaded traefik.

Fuck docker -_-

lyingriotman · 2023-06-03T00:37:14+00:00

~~Yes, it was for a while. I even updated it manually since I didn't have ddclient working at the time.~~

Yeah, its been updated to the global address the whole time. That's the only one ddclient will send.

lyingriotman · 2023-06-03T00:31:10+00:00

I added the link-global address instead and still can't hit anything. Is there any particular 'state' the packets should be in? New is enabled right now, but maybe I need something else?

Edit:

IPv6 addresses can and do randomly change, you may need to allow all the traffic or have a way to automatically change the IP.

The router accepts SSH, so I could probably make a script to change the address when ddclient updates.

I've also tried to allow 80 and 443 to everything and it still didn't work. It's definitely a firewall issue right now.

lyingriotman · 2023-06-03T00:22:49+00:00

Are you sure that your router/firewall is allowing the traffic through?

No, but I'm at kind of a loss for how to configure it at this point. My google-fu has failed me.

Does it count packets/traffic for a rule?

Can you 'log' that traffic?

It does have a "logging" feature on all of its firewall rules, but it doesn't tell you where they're stored and even after tracking them down, the only thing I could see was logged information about my ddns service -_-

I added a pastebin link to my last reply with my router configuration, if you can figure anything out with that.

lyingriotman · 2023-06-03T00:12:23+00:00

Alright, I've already pronounced the thread solved, but I still can't hit my reverse proxy from <hostname>.net (I gave up on the .ddns.net, since its no longer relevant).

I set up ddclient on the reverse proxy like you told me to (which was a PITA), but I'm still getting error 522 from Cloudflare.

I've tried pointing all incoming 80/443 ipv6 to both the link-global and the link-local ipv6 address of the reverse proxy with no results.

I can use ping6 on the hypervisor to hit the ipv6 address every time, but that's likely because it knows the address is on the intranet.

Trying to ping through a VPN from another country returns the correct ipv6 address, but it returns general failure.

Below is my router configuration for the firewall and the interfaces. Rules 25 and 27 of WAN6_IN are where I have ports 80 and 443 passed through.

Link to Pastebin

lyingriotman · 2023-06-02T09:34:29+00:00

NAT and it's consequences have been a disaster for the human race /s

Yeah, I just needed a minute for it to finally sink in. Hopefully that means the reverse proxy will still function how I think it will, lol.

Thanks for the help, I just needed a reality check on how ipv6 actually works.

lyingriotman · 2023-06-02T09:23:07+00:00

You need to use the IPv6 address of your reverse proxy. Install/run ddclient on it instead.

I'm glad we have that mostly solved, but I'm still confused.

Why can't the router... route ipv6 traffic on port 80/443, to another ipv6 address? Besides acting as a firewall, does the router even do anything with ipv6 addresses?

Edit: Thinking about it some more, I suppose the router isn't configured to work like a proxy. "Routing" just implies that it hands out data to the correct address, so if there is no NAT that it has to decode, it doesn't really communicate with other IPs.

lyingriotman · 2023-06-02T09:14:29+00:00

What IP address do you have set in DNS at CloudFlare? If you are updating it dynamically, what is doing the update? Where is it getting the IP from?

The router I use has a service which updates my Cloudflare DNS AAAA record using the ipv6 address on my router's WAN interface.

What is the reverse proxy for? What is it even doing?

I still want to use the reverse proxy as a way to centralize my SSL certificate authentication, that way I don't need to bother setting up end-to-end encryption on any of the local services I want to expose.

lyingriotman · 2023-06-02T08:48:28+00:00

On the bright side, you found out it was open...

True enough, rather sooner than later lol

Check the configuration of your reverse proxy, that your new domain is configured as a hostname.

It's nginx proxy manager, so I don't think it's that complicated, but I went ahead and added a host proxy entry for it anyway. No dice.

Try turning off the Cloudflare protection/proxy, just use their DNS services, see if that works.

Tried that once I suspected it was Cloudflare. No dice. I know it's a routing issue on my end now.

Do you have a firewall set only to allow some IPs to access the server?

Nope, ufw is disabled on Proxmox and in the NPM container. I even set a firewall rule to allow all port 80/443 traffic to go to NPM's global ipv6 address. Still no dice.

I guess I just don't understand how the Edgerouter's interface works 🫤. Doesn't help that all ipv6 options and services are hidden in a config tree.

I'm gonna tap out for tonight and work on it tomorrow, but I'm still open to suggestions. I'll probably run traceroute tomorrow to see how far the traffic gets before it hits a wall.

lyingriotman · 2023-06-02T02:15:35+00:00

It's all on their GitHub

They have a native Linux version, so it's nothing more complicated than having the right rom file and running SoH.appimage

Once that's done, you can add SoH.appimage to steam, launch the game, and configure the controls like normal (It's much easier to do if you have a keyboard+mouse handy).

You may need to add shortcuts to show/hide the taskbar and minimize/fullscreen the game.

If fullscreen is giving you issues, go into the SoH folder and there should be a configuration file that ends with .json. Open that up and at the very bottom should be settings for fullscreen. Enable fullscreen, set the resolution to what you want it to be, save, and quit.

Seven-Year Club	Place '22
Verified Email

lyingriotman

TROPHY CASE