NextZen-Doc/Instructions for use by features/NextCloud/Setup NextCloud.md

1. Create a new domain name using Portainer

• Before you create a new domain name, you need to transfer the domain name to Cloudflare management and get GLOBAL API KEY Domain name management - CloudFlare
• Step 1: Access Portainer through the system Dashboard or directly via the link: app.local-> Log in to your account and password . App Manager

!

• Step 2: In the interface Portainer -> NextWeb Apps -> Select App Templates -> NextZen Cloudflare DDNS

!

• Step 3: Enter the information:
  • Enter Name: Enter the full domain name.
  • Enter DOMAIN: Enter the main domain name (Ex: cstsoft.com).
  • Enter SUBDOMAIN: Enter the subdomain if any (Ex: cloud.cstsoft.com, only enter cloud).
  • Enter Email: Enter the email registered to the Cloudflare domain management account.
  • Enter GLOBAL API KEY: Enter Cloudflare GLOBAL API KEY according to account.

!

• Step 3: After entering the information -> select Deploy the container to complete

!

After successful Deploy, the interface displays the newly created cloud.cstsoft.net application

!

2. Link the domain name to the NextCloud application using the NextWeb

• You need to log in to WebserserWebsite Management - NextWeb
• Step 1: In Site List -> +ADD SITE

!

• Step 2: Select "Create a PHP website"

!

• Step 3: Select application: NextZen-Nextcloud

!

• Step 4: Enter information:
  • Domain name: Domain name you connected to Portainer (cloud.cstsoft.net)
  • PHP version
  • Site User: The primary SSH account for the site
  • Website user password: Can be self-generated or randomly generated Then -> Generate

!

• Step 5: After you have successfully created it, you need to issue an SSL certificate -> Select the nextcloud website you just created -> Click website domain name: cloud.cstsoft.net

!

• Step 6: Issue SSL certificate to keep the website absolutely secure -> Select SSL/TLS

!

• Step 7: In the Certificates section -> Select Actions -> Select the certificate

  • Added new Let's Encrypt certificate

  !

  • Select Create and install to complete the certificate and automatically renew after 3 months.

  !

Domain is linked to Nextcloud

3. Set up NAS for Nextcloud

• Initially, the system does not have a hard drive set up, so you need to log in to the NextNAS to set up NextNAS - Hard Drive Management
• Set up new hard drive
• Step 1: Select Storage -> File Systems

!

• Step 2: Select + -> BTRFS to add a new hard drive

!

• Step 3: In Profiles, select Single to create a single hard drive -> In Devices: select the drive to  format into BTRFS format to mount in the system -> Save !

After the success notification, select close to turn it off

!

• Step 4: After formatting, the system will automatically switch to the Mount section (attach the drive to the operating system)
  • In the File System section, select the drive you just formatted
  • In the section Usage Warning Threshold, you choose the warning level that the drive is almost full. You can leave the default at 85% (when it reaches 85%, we will receive a warning that the drive is almost full). then -> Save

!

• Step 5: Select the v icon to apply these changes -> Yes

! !

• Step 6: Select the drive as default storage -> Services -> Symlinks -> Default storage location -> Edit

!

• Step 7: Select the icon as shown -> dev-disk-by-uuid -> Choose

! !

• Step 8: After choosing a storage location -> Save to complete.

! !

• Step 9: Restart the NAS to update the new hard drive -> Reboot -> Confirm -> Yes

! !

4. Create NextCloud AIO using Portainer

• Create NextCloud AIO application using NAS Apps
• Step 1: After NAS Apps Online (UP) -> Select NAS Apps

!

• Step 2: In NAS Apps interface -> Select App Templates -> NextZen Nextcloud AIO NAS

!

• Step 3: Enter the information (recommended to keep the default parameters):
  • Name: Enter the application
  • CLOUD FOLDER: Enter the directory path containing data, default: /DATA/cloud
  • MAX UPLOAD SIZE: Enter the maximum upload file size, default: 1000 GB per file
  • MAX UPLOAD TIME: Enter the maximum upload time, default: 36000 seconds per file
  • TALK PORT: Enter the Port used for Nextcloud talk, default: 58743 Then select Deloy the stack

!

After installation is complete, the interface displays the nextcloud-aio-mastercontainer application in heathy status, meaning you have successfully installed it.

!

5. Access Nextcloud AIO

• Step 1: Customers Access IP address: http://10.0.0.10/board -> Nextcloud AIO

!

You can access directly via the link: or https://cloud.local/ or https://10.0.0.4:8080/

• Step 2: After customers access Nextcloud AIO setup, they will provide you with an administrative password -> Select Open Nextcloud AIO login

!

• Step 4: Enter the password you are provided -> Login

!

• Step 5: After successfully logging in, the nextcloud custom interface appears

!

• Step 6: After accessing the nextcloud custom interface, you need to enter the domain name you created on the webserver: cloud.cstsoft.net -> Submit domain

!

• Step 7: You need to customize the parameters you need to use for the system
  • ClamAV (Antivirus backend for Nextcloud): Antivirus for Nextcloud, only supported on x64, requires additional ~1GB of RAM.
  • Collabora (Nextcloud Office): Allows use of the Nextcloud Office online office suite.
  • Fulltextsearch: Full text search, requires ~1GB more RAM.
    • All text in files: Fulltextsearch will extract all text in supported files, including text in headings, paragraphs, tables, images, and captions.
    • File Attributes: Fulltextsearch will also index file attributes such as file name, file type, creation date, and modification date.
  • Imaginary (for previews of heic, heif, illustrator, pdf, svg, tiff and webp): Allows previews of heic, heif, illustrator, pdf, svg, tiff and webp files. Imaginary is currently incompatible with server-side encoding.
  • Nextcloud Talk: Allows use of Nextcloud Talk voice calling and video conferencing features. Need to open/forward port 58743/TCP and 58743/UDP on your firewall/router.
  • Nextcloud Talk Recording-server: Record calls for Nextcloud Talk. Needs to enable Nextcloud Talk, add ~1GB RAM, and ~2 additional vCPUs.
  • Docker Socket Proxy: Required for Nextcloud App API. Then select Save changes

!

• Step 8: Then you need to enter your time and time zone. For example: Asia/Ho_Chi_Minh

!

You can see the time zone here

• Step 9: Next, select Download and start containers

!

• Step 10: Then select Reload to relaunch

!

• The interface shows you have successfully created, the container is in Running state and Admin Account for you to access

!

• AIO password change You can change your AIO password (Minimum 24 characters) here

!

6. Visit Nextcloud

• Step 1: Customers access directly via the link: https://cloud.cstsoft.net/
• Step 2: Enter username and password -> Log in

!

• Step 3: After successfully logging in, the Nextcloud Interface displays

!

7. Where to store Nextcloud

• Step 1: Customers Access IP address: http://10.0.0.10/board -> Admin

!

You can access directly via the link: or https://ad.local/ or http://10.0.0.4/#/login

• Step 2: Log in to Admin to check

• Step 3: Select manage Files

!

• Step 4: Here you will see the cloud folder, all download and upload data of Nextcloud is contained here.

!

Note: Nextcloud has a control mechanism: File management in the nextcloud system, when you use external managers, you will not be allowed to write, edit or delete data, you will be able to check, read, copy copy, move to another place. If you want to have an impact, you need to go through the system's administrative interface. Administrators accessing the cloud will see each person's folder, each created user will see the folder with that user's name.
Ex: The admin account is stored in the admin folder.

!

• Where to store nextcloud source code: Go to Root>DATA> AppData> Docker> volumes

!

8. Backup NextCloud

• 1. Select the path to save the system backup
  • Step 1: Access Admin -> File

  !

  • Step 2: Here you create a new folder to save the backup For example, create a backup folder !

2. After creating a backup location, return to the Nextcloud AIO settings page and enter the path to the backup location (/DATA/backup) -> Submit backup location !

3. After successful submission, you will see backups will be created in the folder on the server: /DATA/backup/borg

!

4. You can select Create backup to backup system data at that time

!

While backing up, the systems will be paused and after the backup is complete, applications will continue to be launched -> Reload

!

After a successful backup: you will see the date and time you created the backup

!

• If you want to copy or transfer the backup to another place or read it on another system, you need to copy the backup you just created and need a password to decrypt it.

!

• Backup check: To check the integrity of backups, This is an option that verifies that your backup is intact.

!

• Backup restore: Select a version you want to restore

!

• Daily backup and automatic updates: Automatic backups and updates, and automatic deletion after 7 days

!

• Back up additional directories and docker volumes of your host: Back up additional folders and Docker volumes of the server

!

Things You Might Not Know

Borg Backup Mechanism: Borg is an open-source, decentralized backup tool that uses the "deduplicated archive" storage model to optimize efficiency and storage space.

• Here are the key points about the Borg backup mechanism: 1. Decentralized Storage:
• Borg does not store data as a single backup copy but divides it into multiple smaller "archives."
• These archives are distributed across multiple storage servers, which can be internal hard drives, network-attached storage (NAS), or cloud storage services.
• Data distribution enhances data protection and reduces the risk of data loss due to hardware or software failures. 2. Deduplication:
• Borg employs deduplication technique to eliminate duplicate data among archives.
• When creating a new backup, Borg stores only new data portions instead of storing the entire data.
• Deduplication reduces the storage space needed for backups, especially when you have multiple backups of the same data. 3. Encryption:
• Borg supports data encryption to enhance security.
• You can use various encryption algorithms, such as AES-256.
• Data encryption safeguards data from unauthorized access, even if the data is stolen. 4. Backup Schedule:
• Borg allows you to create automatic backup schedules.
• You can set backup schedules by day, hour, or minute.
• Automatic backups ensure that your data is always up-to-date and protected. 5. Data Restoration:
• Borg provides multiple options for data restoration.
• You can restore all data or only specific portions of the data.
• Data restoration can be performed quickly and easily. Learn more here

9. Using Nextcloud Talk

• To use Nextcloud Talk, you need to open the Nextcloud Talk firewall to the Internet, otherwise, you cannot make calls.

1. Access Nextzen Router -> Log in
2. Select Network -> Choose Firewall - > Port Forwarding
3. Enable Nextcloud Talk Port 58743 -> Save and Apply

!

10. Uninstalling Nextcloud and Reinstalling

Steps to Remove Nextcloud from the System

1. Portainer -> Nas Apps
2. Select Container -> Check the boxes for containers related to Nextcloud -> Click Remove to delete the containers (Uninstall the application)
3. Select Volumes -> Check the boxes for volumes related to Nextcloud -> Click Remove to delete the volumes (Delete application data)
4. Select Stack -> Check the box for nextzen-nextcloud-aio-nas -> Click Remove to delete the Stack
5. Completing the removal of Nextcloud

• Access Portainer

! !

• Dekete container

!

!

• Delete Volumes

! !

• Delete Stack

! !

After deleting application data, you can delete personal data by:

1. Access Admin -> File
2. In the Data folder -> Select the cloud folder -> Delete cloud folder
3. Complete deletion of all user data

!

Regenerate the Nextcloud application

1. Go to Portainer -> NAS Apps
2. Select App Template -> NextZen Nextcloud AIO NAS
3. Set parameters
4. Deploy the stack
5. Complete the installation of the container nextcloud-aio-mastercontainer to setup and run nextcloud
6. Access Dashboard -> Nextcloud AIO -> Get new Password
7. Access Open Nextcloud AIO login ↗ -> And you can completely create or restore nextcloud

Details of operations

1. Access NAS Apps

!

2. Set parameters -> Deploy the stack

!

3. Access Nextcloud AIO

! 4. Create or restore Nextcloud

!

For example: You want to backup old nextcloud data

1. Enter the path where to save the backup data: (DATA/backup)
2. Enter the backup Password
3. Submit location and password ->Test path and password -> Reload
4. Check data integrity -> Check backup integrity
5. Select backup -> Restore selected backup
6. Select Start and update containers to launch

! !

Note: Is your data safe?

• Nextcloud initialization creates a completely random, extremely strong password.
• Your data is completely secure and private.

11. How to access nextcloud AIO while the system is running

• When the system is running, you will not be able to access nextcloud AIO through the Dashboard as well as the links: https://10.0.0.4:8080/*

!

To access Nextcloud AIO

1. Access the nextcloud application using the domain name you created.
2. Go to account-> Administration settings
3. At overview -> Open Nextcloud AIO interface -> You will access Nextcloud AIO without entering a password

! ! !

• To access Nextcloud AIO another way (Do not use the domain cloud.local or from the dashboard) you need to close the container nextcloud-aio-apache (Because this container will block you from accessing updated when Nextcloud is running)

1. Go to Portainer -> NAS Apps
2. Select Container -> nextcloud-aio-apache -> Stop
3. You can access Nextcloud AIO via Dashboard etc

!

12. Change the domain name to have Nextcloud

1. Create a new domain name using Portainer [Detailed instructions here]
2. Link domain name to NextCloud application using Webserver [Instructions here]
3. Go to Nextcloud -> Administration settings
4. Chat -> Delete old configuration (If you use Nextcloud Talk)
5. After deletion -> Overview -> Open Nextcloud AIO interface
6. At Nextcloud AIO -> Stop containers
7. Move to Optinal containers -> Turn off all installed applications -> Save changes
8. Go to Admin -> File -> App Data -> Docker -> Volumes -> nextcloud_aio_mastercontainer
9. In nextcloud_aio_mastercontainer -> _data -> configuration.json
10. Change domain: to new domain (cloud2.cstsoft.net) -> Save
11. Go to Portainer -> NAS Apps -> Containers -> Restart nextcloud-aio-mastercontainer .
12. Start container -> After the container is running -> Stop containers
13. Access Nextcloud AIO: Go to Optinal containers -> enable all desired services -> Save changes
14. Start containers -> Changed successfully.

• Delete old Nextcloud talk configuration (Step 4)

!

• Stop containers

!

!

!

• Access configuration.json

!

• Modify domain name

!

• Start container

!

13. Access Nextcloud using local network

• Use Nextcloud in the internal network

1. Block webserver from going out to the Internet
   • Go to Nextzen Router -> Sign in
   • Select network -> Select firewall -> Port forwarding
   • Turn off Webserver TCP Port 80 and Web server TCP Port 433 -> Save and Apply

!

• Now you cannot access the web via the Internet

2. Adguard Home

   • Go to Adguard Home -> Sign in
   • Select filter -> Select DNS rewrite - > Add DNS rewrite
   • Enter your domain name and IP address: 10.0.0.3 -> Save

   !!

3. Complete Nextcloud in the local network