It was Plex that did the IP range ban because people were selling access to their boxes.

There are two types connection in this scenario

1. Direct - no additional cost to Plex, using the port forwarding instructions you mentioned. No limit on bandwidth - the best (and most common) option
2. Relay - for whatever reason your client cannot reach the server (CGNAT / port forwarding not possible / firewall on client side etc), Plex will act like a man in the middle & limit the connection to 2mbit. (Yup, megaBIT).

I switched away from Plex last year because they wouldn’t let me connect with my box in Hetzner. I’m now using Emby, ironically I’m also paying for Emby’s monthly subscription. Not because I believe I need to, but because I want the developer to continue to work on it.

Except for that time I took out the battery because it was swollen and took the screen off to help with cooling. At least I still have my K and M

Copy paste is easy. You just tap on the, no wait you tap on the, fuck hold on. You tap, there we are, on the word and hold until it highlights. No wait hold on. Fuck. There we are. Ok now you tap on the highlighted word to copy, fuck wait Ah fuck it just type it again yourself

You can either set a DHCP reservation in your router, or manually set the IP on the device.

When I say private IP, I’m referring to the internal IP e.g 192.168.1.X

Means internally I just go to the domain without having to remember the IP I set.

I don’t even bother with the internal DNS server. I just set my A records in Cloudflare to point to the private IPs

I use letsencrypt a lot, if firewalls are an issue I’ll use dns authentication.

If you are struggling and need a quick fix, the free tier of zero ssl will do a similar thing

https://zerossl.com/

I used it to get a cert for my printer

I use Cloudflare tunnels for this very reason, you can protect access to the page behind a login (I use azure AD).

It basically acts like a reverse proxy allowing me access to those local resources without anything being installed on the client computer.

Hi,

I’m here today to talk to you about our lord and saviour, Docker.

Do you have a moment to talk about containers?

It has never occurred to me to create a wildcard entry for sub domains….

If you use NGINX proxy manager you’ll also be able to use a FQDN with SSL for your local services without them being exposed to the internet. It means your local users won’t see the scary insecure page when they access services.

You can even set your public dns records to have Plex.yourdomain.tld point to the local IP of NGINX - removing the need for local dns entirely. That way if you do need to access a service outside with tailscale; their subnet router feature will just work out of the box.

Porkbun are still offering a free .dev or .app domain if you don’t already have one: https://porkbun.com/event/freeappdevdomain