Cameron mueslimak3r

## caddy-security-caddyfile
{
        admin off

        http_port 80
        https_port 443

        order authenticate before respond
        order authorize before basicauth

        security {

## valuablegems.txt
color change sapphire
color change garnet
uvarovite garnet
tsavorite garnet
tiger eye
star sapphire
spessartite garnet
smoky quartz
saltwater pearl
rose quartz

## jellyfin-docker-compose.yaml
---
version: "2.1"
services:
  jellyfin:
    image: linuxserver/jellyfin
    container_name: jellyfin
    #runtime: nvidia
    environment:
      - PUID=1000 # user id
      - PGID=1000 # group id

## jellyfin-caddy-fail2ban-auth
**caddy config for jellyfin:**

jellyfin.mydomain.com {
        reverse_proxy http://192.168.0.1212:2121

        log {
                output file /var/log/caddy/JellyfinProxy.log {
                        roll_size       2MiB    # Set max size 5 MB
                        roll_local_time true    # Use localhost time
                        roll_keep 4             # Keep at most 2 log files

## ttl-mods.txt
# iptables rules for mangling ipv4 and ipv6 traffic

# prerouting rules appear to prevent leaks to the ISP
iptables -t mangle -I PREROUTING 1 -j TTL --ttl-set 65
ip6tables -t mangle -I PREROUTING 1 -j HL --hl-set 65

# postrouting rules do the heavy lifting
iptables -t mangle -I POSTROUTING 1 -j TTL --ttl-set 65
ip6tables -t mangle -A POSTROUTING 1 -j HL --hl-set 65
	{
	admin off

	http_port 80
	https_port 443

	order authenticate before respond
	order authorize before basicauth

	security {
	color change sapphire
	color change garnet
	uvarovite garnet
	tsavorite garnet
	tiger eye
	star sapphire
	spessartite garnet
	smoky quartz
	saltwater pearl
	rose quartz
	---
	version: "2.1"
	services:
	jellyfin:
	image: linuxserver/jellyfin
	container_name: jellyfin
	#runtime: nvidia
	environment:
	- PUID=1000 # user id
	- PGID=1000 # group id
	caddy config for jellyfin:

	jellyfin.mydomain.com {
	reverse_proxy http://192.168.0.1212:2121

	log {
	output file /var/log/caddy/JellyfinProxy.log {
	roll_size 2MiB # Set max size 5 MB
	roll_local_time true # Use localhost time
	roll_keep 4 # Keep at most 2 log files
	# iptables rules for mangling ipv4 and ipv6 traffic

	# prerouting rules appear to prevent leaks to the ISP
	iptables -t mangle -I PREROUTING 1 -j TTL --ttl-set 65
	ip6tables -t mangle -I PREROUTING 1 -j HL --hl-set 65

	# postrouting rules do the heavy lifting
	iptables -t mangle -I POSTROUTING 1 -j TTL --ttl-set 65
	ip6tables -t mangle -A POSTROUTING 1 -j HL --hl-set 65