Ok, where did I say any of that exactly? I never said it was a jellyfin only issue anywhere, and I sure as hell didn’t say anything about VPN, as much as you didn’t say anything about a proxy until now. And congrats on using a proxy and exposing your server to said proxy, you’re just proving my point by not exposing directly to the internet as your previous comments implied.

Well I was just answering your question about “why would jellyfin have documentation about opening it to the web if unsafe?” by pointing out that while they do tell you how to, they also explains the risks associated with doing so. Having documentation about something doesn’t mean that the devs endorse this usage.

According to your own link that you totally read : “Note that opening a port gives full access to that port to the next higher Network. Opening a port directly to the Internet is therefore insecure and not recommended.” and “forwarding its Ports directly to the internet (not recommended!)”