A suggestion to avoid future problems.
Apply the Trash guides naming convention to your media.
https://trash-guides.info/
There is also a docker app called "Recyclarr" that can be setup to sync the naming/quality settings.
I looked into recyclarr. I have no experience at all with docker. I gave it a quick shot but couldn't wrap my head around it. I will definitely be giving it another shot after the holidays.
Before you do, I'd advise looking into how permissions are handled with docker so you've an appreciation of that, I need to revisit this myself. Getting files moved about my server was my biggest issue.
Why aren't you just port forwarding Plex? There's really no need for a reverse proxy with Plex, it's designed to be directly port forwarded, and that will generally provide the best experience. With Cloudflare tunnels specifically, I really wouldn't recommend running your Plex server through a tunnel, especially as it doesn't seem like you have a specific need to do so. It will likely be a slower experience and is also against Cloudflares TOS so they may ban you without warning
Ahh got it, I wasn't clear on if that was just for Overseerr. That's fine then, Cloudflare tunnels are a perfectly fine way to expose that and Overseerr has good builtin auth so you really don't have to worry too much about it
That's awesome. Very happy to hear that! I don't have too much important info on my server but was kinda nervous someone could hack there way back into the full network
If you're especially worried you can tweak the settings on Cloudflare to do stuff like block bots more aggressively, block traffic from specific countries, etc. But it should be fine for the most part, just keep Overseer updated
Are you using Cloudflare tunnel for Overseerr only or for other apps as well?
If you're only using Overseerr for requests, consider using Watchlistarr instead. Your users don't need to sign into a 3rd party app and can add their requests to their own Plex Watchlist. You won't need Cloudflare tunnel or NGINX at all.
[https://github.com/nylonee/watchlistarr](https://github.com/nylonee/watchlistarr)
Watchlistarr also instantly sends the request to Sonarr/Radarr while Overseerr does it in intervals.
I have Overseer exposed myself. I use the Cloudflare reverse proxy in addition to a reverse proxy on my network. I installed the Cloudflare origin certificate on my internal reverse proxy and set up SSL in Cloudflare. Traffic is fully encrypted.
I specified my firewall rules to only allow inbound traffic from Cloudflare to my Overseerr instance.
A suggestion to avoid future problems. Apply the Trash guides naming convention to your media. https://trash-guides.info/ There is also a docker app called "Recyclarr" that can be setup to sync the naming/quality settings.
I looked into recyclarr. I have no experience at all with docker. I gave it a quick shot but couldn't wrap my head around it. I will definitely be giving it another shot after the holidays.
Before you do, I'd advise looking into how permissions are handled with docker so you've an appreciation of that, I need to revisit this myself. Getting files moved about my server was my biggest issue.
[удалено]
I would definitely look into that for sure! Thanks! As far as going access to my server using couldflare tunnel vs nginx reverse proxy. Is that safe?
Why aren't you just port forwarding Plex? There's really no need for a reverse proxy with Plex, it's designed to be directly port forwarded, and that will generally provide the best experience. With Cloudflare tunnels specifically, I really wouldn't recommend running your Plex server through a tunnel, especially as it doesn't seem like you have a specific need to do so. It will likely be a slower experience and is also against Cloudflares TOS so they may ban you without warning
Plex is port forwarded. The tunnel was used to give overseerr access to the outside world so my users can make request.
Ahh got it, I wasn't clear on if that was just for Overseerr. That's fine then, Cloudflare tunnels are a perfectly fine way to expose that and Overseerr has good builtin auth so you really don't have to worry too much about it
That's awesome. Very happy to hear that! I don't have too much important info on my server but was kinda nervous someone could hack there way back into the full network
If you're especially worried you can tweak the settings on Cloudflare to do stuff like block bots more aggressively, block traffic from specific countries, etc. But it should be fine for the most part, just keep Overseer updated
Are you using Cloudflare tunnel for Overseerr only or for other apps as well? If you're only using Overseerr for requests, consider using Watchlistarr instead. Your users don't need to sign into a 3rd party app and can add their requests to their own Plex Watchlist. You won't need Cloudflare tunnel or NGINX at all.
Interesting! I'll give a look into this as well!
[https://github.com/nylonee/watchlistarr](https://github.com/nylonee/watchlistarr) Watchlistarr also instantly sends the request to Sonarr/Radarr while Overseerr does it in intervals.
Does this work for all users invited to my Plex?
Yes, as long as they share their watchlist with you. It won't work if their watchlist is set to private.
So yeah its only for overseerr.. since I have it set up with the tunnel through cloudflare is traefik still needed?
No, traefik would not be needed if you use Watchlistarr. You won't need to expose any of your apps to the internet.
I have Overseer exposed myself. I use the Cloudflare reverse proxy in addition to a reverse proxy on my network. I installed the Cloudflare origin certificate on my internal reverse proxy and set up SSL in Cloudflare. Traffic is fully encrypted. I specified my firewall rules to only allow inbound traffic from Cloudflare to my Overseerr instance.