This assumes that Jellyfin is installed int the defalut location.
Open PowerShell as an Administrator then run:
- Activate firewall and set defaults
Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled True
Set-NetFirewallProfile -DefaultInboundAction Block -DefaultOutboundAction Allow –NotifyOnListen True -AllowUnicastResponseToMulticast True –LogFileName %SystemRoot%\System32\LogFiles\Firewall\pfirewall.log
- Allow Jellyfin inbound from local subnet on Domain and Private profiles:
New-NetFirewallRule -DisplayName “Jellyfin - allow inbound Jellyfin from local subnet” -Profile @('Domain', 'Private') -Direction Inbound -Action Allow -Program %ProgramFiles%\Jellyfin\Server\jellyfin.exe -RemoteAddress LocalSubnet
I had set up a seperate rule for auto-discovery. But it's probably not needed. Enable auto-discovery:
New-NetFirewallRule -DisplayName 'Jellyfin - allow inbound auto-discovery from local subnet' -Profile @('Domain', 'Private') -Direction Inbound -Action Allow -Protocol UDP -LocalPort @('1900', '7359') -RemoteAddress LocalSubnet
8096/tcp is used by default for HTTP traffic. You can change this in the dashboard.
8920/tcp is used by default for HTTPS traffic. You can change this in the dashboard.
1900/udp is used for service auto-discovery. This is not configurable.
7359/udp is also used for auto-discovery. This is not configurable.
Windows Defender Firewall with Advanced Security Administration with Windows PowerShell