Thanks for sharing! I still need the script because I already have a tunnel on a Mikrotik OS vm router to route all my containers through the vpn.

I created a simple script to automatically request a port to ProtonVPN servers and assign it to qbittorrent:

https://github.com/giu176/ProtonVPN-auto-NATPMP

I created a script exactly for that, I’m using it for months now and it’s working fine: https://github.com/giu176/ProtonVPN-auto-NATPMP

Here is your STL, thank you for your patience: https://www.thingiverse.com/thing:6376454

Finally: https://www.thingiverse.com/thing:6376454

Finally, clock 2

If you are using Linux I wrote a script just for that!

https://github.com/giu176/ProtonVPN-auto-NATPMP

I’m using it on my headless server and it worked fine for the last two months. Tell me if you need help in the setup (the Readme should be exhaustive).

To connect your domain to your IP use godaddy website, it should have a section where you can configure a dns entry, you can specify an IP address (your public IP) and, after a while, every device on the internet connecting to YOURDOMAIN.COM will be send to your home. If godaddy doesn’t offer a dns service you have to buy it somewhere else like on cloudflare, here I think you will need to prove that you own YOURDOMAIN.COM and then setup your IP in the dns. If you don’t have a static IP you need a DDNS (Dynamic DNS). After that you open the port number 443 on your home router so that https requests will be send to a device of your choice, this device will host your reverse proxy, the reverse proxy binds a domain name (the one you brought) or a sub domain to a service of you choice on your local network, doing this you don’t expose the local server directly and you need to open a single port only.

I bought a domain on namecheap.com and it has a configurable dns built in so I hope that godaddy has one too. I use Caddy as a reverse proxy for my jellyfin instance instead of Nginex, I think that they are both valid, another thing other people said in the comment is to access jellyfin via wireguard tunnel and I confirm that is the best choice if you don’t have specific needs, let me explain. The reverse proxy automatically generates ssl certificates using let’s encrypt allowing you to cast from an android phone to a Google chromecast (this seems to be the only way to do it and works very well for me). I also configured other services on caddy, in my setup I block every request to the reverse proxy that doesn’t arrive from inside my local network (except jellyfin so I can use it remotely), I know that it’s not the intended use of a reverse proxy but it makes some things possible that otherwise will need more configuration:

• I have two separate networks in my home, my reverse proxy has a double interface so I can easily access all services from devices on the main network.
• I don’t need to configure local dns rewrites to my services neither I have to add exceptions for dns rebind inside my router, I simply add a new rule to caddy and it just work.
• I have https for every service on my network without annoying messages on the browser.

If you think this lazy use of the reverse proxy could be a problem please tell me your thoughts!

Thank you for the time and effort in the reply. The information you gave are very useful.

Thank you for the clarification! I’ll move to a different solution for my setup then.

Thanks for all the useful informations. In my current setup I use a Proton vpn tunnel on a mikrotik router to route all the traffic from my torrenting machines through it, the only problem is that the router doesn’t support NAT-PMP which is used by Proton to open ports on their side of the tunnel. Is this a problem? If I understand correctly PF does not influence my ability to download but only my uploads (without PF my files can’t be accessed via TCP I guess). I don’t think I need PF because I already had to limit my uploads because of my shitty internet connection, in good days I have 2Mbps upload, this limited bandwidth was always saturated by qbittorrent. I know that it’s not fair p2p but otherwise I couldn’t even use my internet.

I’m asking for confirmation here, when I’ll move to a place with fiber I’ll change my setup for sure! Or maybe I’ll go through some load balancing shenanigans on my network and re-enable uploads in some way…

Amazing! I did the same thing… Never played just started DM’ing form friends… the satisfaction of a good session lasting for days and the afterthoughts is very rewarding. This is the true spirit of the game that brings back people to the table session after sesssion. I remember being rigid on my first sesssions and then we had a wild one where I had to improvise because the party went off track and everyone remember that session! We are four years into the campaign and they are going to the final act. They finally are on the right way behind the bad guys, a lot has changed, I hope they win.