To do that, I’m using a docker image and template from the website The guys from linuxserver.io are ethusiasts and manage docker images for the community. First, I create a new folder in the /opt directory called /opt/wireguard-server and create a new docker-compose.yaml file in this directory. You should also change. When combining Docker and Raspberry Pi you can even get container technology to run on a device that wouldn’t usually be recognized as a computer. How to install Docker on Raspberry Pi In the best case scenario, Docker can be installed with Raspberry Pi’s operating system. Using the automatically generated Let's Encrypt SSL Certificates sudo docker run -i -t -d -p 443:443 -e LETSENCRYPTDOMAIN=yourdomain -e LETSENCRYPTMAIL=yourmail onlyoffice/documentserver If you want to get and extend Let's Encrypt SSL Certificates automatically just set LETSENCRYPTDOMAIN and LETSENCRYPTMAIL variables. 装完之后感慨一下，docker大法真好。参考教程 1、烂泥：个人网盘nextcloud的docker化搭建 2、wonderfall/nextcloud 据说比官网好用的环境，可惜不带Collabora Online，还需要手动安装安装过程安装好LNMP安装包后，测试可用. The mini-computer Raspberry Pi is good for more than just playing around or teaching children about hardware and programming. Users have set up web servers on Raspberry Pi, as well as cloud servers using ownCloud.

1. Docker Nextcloud Ssl
2. Docker Nextcloud Ssl Server
3. Docker Nextcloud Enable Ssl
4. Nextcloud Docker Disable Ssl

Nextcloud can be run through a reverse proxy, which can cache static assets suchas images, CSS or JS files, move the load of handling HTTPS to a differentserver or load balance between multiple servers.

Defining trusted proxies¶

For security, you must explicitly define the proxy servers that Nextcloud is totrust. Connections from trusted proxies will be specially treated to get thereal client information, for use in access control and logging. Parameters areconfigured in config/config.php

Set the trusted_proxies parameter as an array of:

• IPv4 addresses,
• IPv4 ranges in CIDR notation
• IPv6 addresses

to define the servers Nextcloud should trust as proxies. This parameterprovides protection against client spoofing, and you should secure thoseservers as you would your Nextcloud server.

A reverse proxy can define HTTP headers with the original client IP address,and Nextcloud can use those headers to retrieve that IP address. Nextcloud usesthe de-facto standard header ‘X-Forwarded-For’ by default, but this can beconfigured with the forwarded_for_headers parameter. This parameter is anarray of PHP lookup strings, for example ‘X-Forwarded-For’ becomes‘HTTP_X_FORWARDED_FOR’. Incorrectly setting this parameter may allow clientsto spoof their IP address as visible to Nextcloud, even when going through thetrusted proxy! The correct value for this parameter is dependent on yourproxy software.

Overwrite parameters¶

The automatic hostname, protocol or webroot detection of Nextcloud can fail incertain reverse proxy situations. This configuration allows the automatic detectionto be manually overridden. If Nextcloud fails to automatically detect the hostname, protocolor webroot you can use the overwrite parameters inside the config/config.php.

• overwritehost set the hostname of the proxy. You can also specify a port.
• overwriteprotocol set the protocol of the proxy. You can choose between the two options http and https.
• overwritewebroot set the absolute web path of the proxy to the Nextcloud folder.
• overwritecondaddr overwrite the values dependent on the remote address. The value must be a regular expression of the IP addresses of the proxy. This is useful when you use a reverse SSL proxy only for https access and you want to use the automatic detection for http access.

Leave the value empty or omit the parameter to keep the automatic detection.

Service Discovery¶

The redirects for CalDAV or CardDAV does not work if Nextcloud is running behind areverse proxy. The recommended solution is that your reverse proxy does the redirects.

Apache2¶

Thanks to @ffried for apache2 example.

Traefik 1¶

Using docker tags:

Using traefik.toml:

Thanks to @pauvos and @mrtumnus for traefik examples.

NGINX¶

or

Example¶

Multiple domains reverse SSL proxy¶

If you want to access your Nextcloud installation http://domain.tld/nextcloudvia a multiple domains reverse SSL proxyhttps://ssl-proxy.tld/domain.tld/nextcloud with the IP address 10.0.0.1you can set the following parameters inside the config/config.php.

Note

If you want to use the SSL proxy during installation you have tocreate the config/config.php otherwise you have to extend the existing$CONFIG array.

Easy to set up for non technical users

Question based wizard provides automatic setup.

Schedule backups, create snapshots and create security copies of your data both locally or remotely.

Automatic security updates

Your system will be secure and up to date without user intervention.

Firewall, WAF, fail2ban, A+ grade in SSL Labs, and more

SAMBA / NFS

Direct access to your files in the local network.

NextCloudPi is a Nextcloud instance that is preinstalled and preconfigured, and includes a management interface with all the tools you need to self host your private data in a single package.

This is an official open source community project that aims at making it easier for everyone to have control over their own data.

NextCloudPi is free, thriving only on your help, feedback and support.

• Debian 10 Buster
• Nextcloud 19.0.2
• Apache 2.4.25, with HTTP2 enabled
• PHP 7.3
• MariaDB 10
• Redis memory cache
• 4.14 Linux Kernel
• Automatic redirection to HTTPS
• ACPU PHP cache
• PHP Zend OPcache enabled with file cache
• HSTS
• Cron jobs for Nextcloud
• Sane configuration defaults
• Pre-installed popular Apps for home use ( calendar, contacts, notes, tasks, news … )
• Full emoji support
• Postfix email
• Secure

• Setup wizard
• NextCloudPi Web Panel
• ncp-config terminal tool
• Wi-Fi ready
• Ram logs
• Automatic security updates, activated by default
• Let’s Encrypt for trusted HTTPS certificates
• Fail2Ban protection against brute force attacks
• UFW firewall
• Dynamic DNS support for no-ip.org
• Dynamic DNS support for freeDNS
• Dynamic DNS support for duckDNS
• Dynamic DNS support for spDYN
• dnsmasq DNS server with DNS cache
• ModSecurity Web Application Firewall
• NFS ready to mount your files over LAN
• SAMBA ready to share your files with Windows/Mac/Linux
• USB automount
• Remote updates
• Automatic NCP updates
• Automatic Nextcloud updates
• Update notifications
• NextCloud backup and restore
• NextCloud online installation
• Format USB drive to BTRFS
• BTRFS snapshots
• Automatic BTRFS snapshots
• BTRFS snapshot auto sync
• Scheduled rsync
• UPnP automatic port forwarding
• Security audits with Lynis and Debsecan
• ZRAM
• SMART hard drive health monitoring

Debian Buster ( all architectures )

Install it in any Debian supported architecture in one line.

Note: this assumes a clean Debian install, and there is no rollback method currently

Virtual Machine

Compatible with libvirt, Virtualbox, VMWare, Parallels…

Docker (all architectures)

Run NextCloudPi in any system that supports Docker, in one command.

Raspberry Pi (all models)

The most popular board around! You can convert it into your home cloud now.

Docker Nextcloud Ssl

There are Berryboot images available in order to run NextCloudPi directly from an external hard drive.

Docker Nextcloud Ssl Server

Odroid HC2 / HC1 / XU4

This board is much more powerful than the Raspberry Pi and it is specially designed to be used as a NAS.

Rock64

This board is much more powerful than the Raspberry Pi and it is specially designed to be used as a NAS, for a similar price.

RockPro64

Featuring six cores and 4GiB of fast memory, Gigabit Ethernet,USB3 and more, the RockPro64 is the latest from Pine64 and makes an attractive new hardware option for NextCloudPi

Banana Pi

SATA port and Gigabit Ethernet make the Banana Pi a popular low cost NAS solution.

Armbian

Images for any Armbian supported board can be generated easily. If you own a board this is a great way to help!

Debian

You can install NextCloudPi in any Debian Buster system, by using the curl installer.

Docker Nextcloud Enable Ssl

Instead of piping to bash, you can inspect the code and launch manually.

Docker

Nextcloud Docker Disable Ssl

You can use NextCloudPi in any system that supports docker

SBC

There are preinstalled SD card images for the Raspberry Pi and other Single Board Computers.