NextCloud Without Port Forwarding via Cloudflare Tunnels

Thanks for the guide, I got this one working over the other guide.

Though it seems like:
1. You get this prompt about HSTS which wasn't discussed: The "Strict-Transport-Security" HTTP header is not set to at least "15552000" seconds. For enhanced security, it is recommended to enable HSTS as described in the security tips ↗.

2. There are other issues that the redirects didn't resolve:
- Your web server is not properly set up to resolve "/.well-known/webfinger".
- Your web server is not properly set up to resolve "/.well-known/nodeinfo".

somedude

I can confirm the 100mb limitation is there. For some reason if you upload via web interface it works but if you use the nextcloud client or WebDAV it stops as soon as the file hits 100mb. More investigation is needed.

P.s. I confirmed with cloudflare documentation. All HTTP POST request size is limited to 100mb on the free plan..So if you use the desktop client ( WebDAV based) or any other WebDAV client, and need to upload large files this method is not for you. If you only use the web interface you should be fine !

oliveirajmr

I love that you made this video. It's a great practical demo of how to setup cloudflared tunnels!

However, I would like to warn you as well as people reading the comments that those Apache settings are dangerous! They're basically enabling a slow-loris attack, a very simple and affective DOS wherein the attacker bogs down your server by choking it it with a few long-running bogus requests.

If you wish to upload large files to your Nextcloud server, I recommend leaving the Apache settings as-is and using the desktop sync client, as it will break them intelligently into smaller chunks for upload. The browser client isn't setup to do this (AFAIK).

noahwilliams

Thank you so much for sharing this! You made my deployment way a lot easier. Appreciate your time and effort!

ahyi

Man, you rock....have been messing with nextcloud for a while and though I like it, setup has always been hit or miss, this one finally has all the right markers and get to use it with tunnels. You are a champ as always.

lazaruspr

Man! Thank you so much for this video and all your knowledge! I have like 3 weeks fighting with NGINX, firewalls, stacks, etc... and now finally with this solution everythong is working as intended! I'm already a Patreon but is nothing for all the stuffs you do and teach us! Thank you again! (Sorry for my english, is my second language).

goddrago

I'm so grateful for this video. I'm a newbie to this; I only wanted a cloud server. Without this video, It would've been nearly impossible. I really appreciate your effort, thanks so much.

Šuroslav

This is a great video, thank you very much. I struggled for days to get this working the way you go through it (makes it look easy). But my setup, which I thought was similar to yours, really was not because my home lab did not have the DSL router in bridge mode. I am using the Bell HH4000 and the only way I could figure to get it into bridge mode was to buy a NetGear pfsense firewall and configure my HH4000 with the DMZ advanced mode. I am hoping my days of struggling and learning helps someone. I also forgot to open the UFW port 8080 on my host.

agilebarsfromtimebarsltd.

You don't actually need to redeploy the container to change the restart policy. Just go into the container, find the restart policies section and change it, then hit update. For me, so far, this has always worked. But thanks for this great info, helped me out immensely!

simonreidis

Thanks for the video, I was struggling with this for an embarrassing amount of time. Thank you so much!

gerickolson

I’m glad I watched enough of the video to hear this is a OMV video. I’ve been searching for this exact content. Thank you sir

darthkielbasa

Wow! I wasn't even aware that there is something called cloudflare tunnel. Seems like a great solution compared to port forwarding and lesser headaches! Thanks as always.

vba

Thank you so much for the video, it helped me a lot. It's people like you that make the world a smarter place.

JeanCFF

That 'overwriteprotocol' setting saved my day, many thanks, sir!

it-expat-china

Hey Thanks for this tutorial.
Followed it but I still have some warnings.
1. Strict Transport Security HTTP header is not set to at least "15552000" seconds
2. Your web server is not properly set up to resolve "/.well-known/webfinger"
3. Your web server is not properly set up to resolve "/.well-known/nodeinfo"
I don't know why it's throwing out this issue, I saw the right commands on the config.php file and when you visit the url it works.

TheAwesomeGuy

Cloudflare tunnels not showing anymore.

SHVEDsax

Wow dude. Thank you. I was struggling so much deploying this. And your guide helped me out so so much. Thanks a ton mate. I learnt a bit too.

saisibi

Hey David, thanks for this video. Can you please explain the "fixing caldav" part? I didn't understand what you do on this part. Thank you in advance.

zlatizlatev

This video was super helpful in getting my NextCloud setup with access through Cloudflare tunnels. Liked and tip sent.

LouDog

FYI to anyone, when you set up your cloudflare and put force policy HTTP to HTTPs, do not put overwriteprotocol to HTTPS in config.ini. It would cause infinite loop of redirect.

NhatLinhNguyen