Lesson 1Sizing CPU, RAM, and storage for 25 users and 2 TB first-year growth with headroomFigure out the CPU, RAM, and storage you need for around 25 users expecting 2 TB growth in the first year. Learn to plan for busy times, leave extra space for sudden increases, and prepare to grow without stopping your Nextcloud services.
Estimating concurrent users and workload patternsCPU core counts and virtualization overheadRAM sizing for PHP, database, and cacheStorage capacity, growth, and safety marginsLesson 2Remote access options: VPN vs direct HTTPS, pros/cons, and access control implicationsLook at ways for users to reach Nextcloud from far away. Compare using VPN with direct HTTPS access, and see the good and bad sides, plus how each affects logins, controls, and tracking.
User access patterns and threat modelingSite‑to‑site and client VPN design optionsDirect HTTPS exposure and hardeningAccess control, SSO, and audit loggingLesson 3Database selection: MariaDB/MySQL vs PostgreSQL — pros, tuning, and version recommendationsPick between MariaDB/MySQL and PostgreSQL for Nextcloud. See the good points and problems, suggested versions, and simple ways to tune connections, memory, and storage to get steady work at small size.
MariaDB/MySQL vs PostgreSQL feature overviewVersion support and compatibility guidanceCore tuning: connections, buffers, cachesBackup, restore, and maintenance routinesLesson 4PHP version selection and required PHP modules; version lifecycle and compatibility with Nextcloud releasesPick a good PHP version and needed modules for Nextcloud. Know the support times, how it works with updates, and how to set PHP-FPM for good speed, steady running, and safe use.
Supported PHP versions for Nextcloud releasesRequired and recommended PHP extensionsPHP‑FPM pools, limits, and performanceTracking PHP lifecycle and security updatesLesson 5High-availability and scaling considerations for future growth and optional storage expansion strategiesPlan for no downtime and growing your Nextcloud setup later. Look at growing up or out, grouping servers, and ways to add storage so you can increase size without big changes.
Vertical vs horizontal scaling trade‑offsLoad balancers and application clusteringScaling database and cache componentsExpanding storage pools and migration pathsLesson 6Network design: DNS naming conventions, internal vs external records, split-horizon DNSSet up DNS to keep inside and outside names clear for Nextcloud. Learn name rules, split DNS, and how to stop mix-ups, leaks, and certificate problems when opening services safely.
Choosing consistent DNS names and subdomainsInternal vs external DNS zones and recordsImplementing split‑horizon DNS safelyDNS considerations for TLS and certificatesLesson 7Ports and firewall planning: required ports, NAT, and secure exposure of servicesPlan firewall rules and open ports for safe Nextcloud. Find needed ports, set NAT and forwarding, and choose how to show web, database, and admin parts while keeping dangers low.
Required ports for HTTP, HTTPS, and adminDesigning firewall rules and default policiesNAT, port forwarding, and DMZ placementRestricting admin and database network accessLesson 8Choosing web server: Apache vs Nginx configuration differences and performance/compatibility with NextcloudChoose between Apache and Nginx for Nextcloud web server. Compare setups, speed, and fit, and learn to turn on HTTPS, caching, and key safety headers on both.
Apache vs Nginx architecture differencesNextcloud rewrite rules and pretty URLsTLS, HTTP/2, and compression settingsCaching, headers, and security hardeningLesson 9Selecting a Linux distribution: Debian, Ubuntu LTS, CentOS/Rocky — stability and support rationalePick a Linux type that stays steady and supported for Nextcloud. Compare Debian, Ubuntu LTS, and Rocky types by support time, package newness, tools, and safety updates.
Debian: stability, packages, and ecosystemUbuntu LTS: cadence and vendor supportRocky‑style RHEL clones: pros and limitsKernel, PHP, and database version impactsLesson 10Choosing storage types: HDD, SATA SSD, NVMe, RAID levels, and file system considerationsChoose storage hardware and setup for speed and strength. Compare HDD, SATA SSD, NVMe, RAID types, and file systems to mix cost, quickness, and toughness for Nextcloud files and database.
Workload patterns for Nextcloud file storageComparing HDD, SATA SSD, and NVMe optionsRAID levels for redundancy and performanceChoosing file systems and mount optionsLesson 11HTTPS and TLS architecture overview: reverse proxies, SSL termination, and certificate choices (Let’s Encrypt vs commercial)Set up HTTPS and TLS for your Nextcloud. Learn reverse proxies and SSL ending, when to use Let’s Encrypt or paid certificates, and how to handle renewals and safe codes.
End‑to‑end TLS vs TLS termination choicesReverse proxy roles and common topologiesLet’s Encrypt automation and ACME clientsWhen to consider commercial certificatesLesson 12Assessing on-premise vs hosted VM trade-offs for privacy, performance, and costCompare your own hardware with rented virtual machines for Nextcloud. Weigh privacy, rules, speed, cost, and work to pick what fits your group's risks and money.
Data residency, compliance, and legal controlLatency, throughput, and user experience impactCapEx vs OpEx and total cost of ownershipOperational effort, skills, and support needs
