Trying to set up a server (FreeBSD)

šŸš§ Installation
, ,
#1

Hello,
Iā€™ve been trying to set up a Nextcloud server in a Freenas 11.1 jail using Apache and MariaDB for several days, and Iā€™ve been experiencing issues.
At first, Iā€™ve managed to set it up (with http), yet as soon as I enabled memory caching (with php apcu) the server stopped working, only showing a blank screen.
At my next attempt Iā€™ve managed to get it running without the cache, yet as soon as I tried encrypting it with a self-certificate SSL it stopped working again.
At my third attempt Iā€™ve managed to use SSL without the cache, and the cache without SSL, but enabling both does not workā€¦
Iā€™m new to this, and have not quite managed to figure out what went wrong. Iā€™d appreciate your help!
Iā€™m using apache2.4, php 7.2 and mariaDB 10.2 with FreeBSD 11.1 and Nextcloud 13

#2

Hi dkd,

I wrote (for myself) a little memo about pretty much the same environment.
Considering Apache/PHP/DB is already installed and working, here is the excerpt relevant to your question :

ā€“ PART 6 : NEXTCLOUD INSTALL ā€“

First, install nextcloud from ports (portmaster or another tool you like) :
portmaster www/nextcloud

Adjust the permissions :
chown -R www:www /usr/local/www/nextcloud

Restart Apache :
apachectl graceful

Redirect http to https to force SSL :
vim /usr/local/etc/apache24/extra/httpd-vhosts.conf

<VirtualHost :80>
ServerName nextcloud.domain.fr
DocumentRoot "/usr/local/www/nextcloud"
RewriteEngine on
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.) https://%{SERVER_NAME}/$1 [R=301,L]
< /VirtualHost>

Add a VirtualHost/SSL :
vim /usr/local/etc/apache24/extra/httpd-ssl.conf

<VirtualHost *:443>
ServerName nextcloud.domain.fr
DocumentRoot "/usr/local/www/nextcloud"
SSLEngine on
SSLCertificateFile "/usr/local/etc/letsencrypt/ā€¦/cert.pem"
SSLCertificateKeyFile "/usr/local/etc/letsencrypt/ā€¦/privkey.pem"
SSLCertificateChainFile ā€œ/usr/local/etc/letsencrypt/ā€¦/fullchain.pemā€
<FilesMatch ā€œ.(cgi|shtml|phtml|php)$ā€>
SSLOptions +StdEnvVars
< /FilesMatch>
BrowserMatch ā€œMSIE [2-5]ā€
nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
<Directory ā€œ/usr/local/www/nextcloud/ā€>
Options -Indexes
AllowOverride All
Require all granted
< /Directory>
< /VirtualHost>

Then take care about nextcloud database :
This will create a database called nextcloud and a MySQL user called nextcloud with passwordā€¦well password, so replace the values to suit your needs :
mysql -u root -p

CREATE DATABASE nextcloud;
CREATE USER ā€˜nextcloudā€™@ā€˜localhostā€™ IDENTIFIED BY ā€˜yourpasswordā€™;
GRANT ALL ON nextcloud.* TO ā€˜nextcloudā€™@ā€˜localhostā€™;
FLUSH PRIVILEGES;
exit

Restart Apache :
apachectl graceful

Go to URL :
https://nextcloud.domain.fr/
You should reach Nextcloudā€™s config page.
Fill the fields, pretty easy.

And, after that, donā€™t forget :
The nextcloud 13.0.1 package changes the location of the bundled apps.
After updating to 13.0.1 you MUST adapt your configuration. You MUST
add an additional entry to the ā€œapps-pathsā€ array in config/config.php :

cd /usr/local/www/nextcloud
su -m www -c ā€œphp ./occ config:import < /usr/local/share/nextcloud/fix-apps_paths.jsonā€

For better performances, Nextcloud recommends to adapt the php.ini file :
vim /usr/local/etc/php.ini

opcache.enable=1
opcache.enable_cli=1
opcache.memory_consumption=128
opcache.interned_strings_buffer=8
opcache.max_accelerated_files=10000
opcache.revalidate_freq=1
opcache.save_comments=1

Restart Apache :
apachectl graceful
And youā€™re done :slight_smile:

ā€“
LĆ©o.

#3

Hello LĆ©o, and thank you for your response!
First, I was able to get the server up and running - installing from ports rather than a zip file seems to have done it. Thank you!
However, memory cache is still not working (I have changed the settings in php.ini) and the site only works in http, despite setting up https (I used a self signed certificate using OpenSSL) - it refuses to connect with https.
Iā€™ve tried searching logs for any error (/var/log/httpd-access/error.log and nextcloud.log - which is empty) and could not find any error message. The only error message Iā€™ve seen is ā€œkldload: canā€™t load accf_http: Operation not permittedā€ when running apachectl status.
EDIT: managed to access the server using https, but it now says I donā€™t have permission to access the directory ( [Forbidden You donā€™t have permission to access / on this server]) .
The only error Iā€™ve found is in /var/log/httpd-error.log - AH01630: client denied by server configuration: /usr/local/www/nextcloud/favicon.ico
Iā€™d really appreciate your help in setting up SSL and the memory cache.

#4

Hi dkd,

Sorry for my late answer.
If you didnā€™t figure it out by now, please tell me whatā€™s the output of :
kldload accf_http

Regarding the permissions and https, I would say thatā€™s a VirtualHost problem. How did you setup them (http and https virtual hosts) ?

Finally, for memcache, I recommend to fix the first two problems, and leave that one for after :slight_smile:

ā€“
LĆ©o.

#5

Hello LĆ©o,
Iā€™ve reverted to a previous snapshot as I had made a lot of configuration errors, and now the ā€˜kldload accf_httpā€™ stopped showing.
Currently, apache works on http (Iā€™ve tested before setting up redirection) but adding /nextcloud after the IP did not lead me to the setup screenā€¦
as to https, redirection works but Iā€™ve been getting a ā€˜connection refusedā€™ in the web browsers, and the only error I could find is ā€˜AH00094: Command line: ā€˜/usr/local/sbin/httpd -D NOHTTPACCEPTā€™ā€™ in /var/log/httpd-error.log Iā€™ve set the VirtualHost configurations in /usr/local/etc/apache24/extra/httpd-vhosts.conf for http and in /usr/local/etc/apache24/extra/httpd-ssl.conf for https rather than a seperate host file ( I also uncommented them in /usr/local/etc/apache24/httpd.conf).
My httpd-vhosts.conf:
<VirtualHost *:80>
DocumentRoot "/usr/local/www/nextcloud"
RewriteEngine on
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.) https://%{SERVER_NAME}/$1 [R=301,L]
ServerName 192.168.1.20
ErrorLog "/var/log/http-error_log"
CustomLog ā€œ/var/log/http-access_logā€ common

And my httpd-ssl.conf:

<VirtualHost *:443>
ServerName 192.168.1.20
DocumentRoot "/usr/local/www/nextcloud"
SSLEngine on
SSLCertificateFile "[my path to SSL crt file]"
SSLCertificateKeyFile ā€œ[my path to SSL key file]ā€

<FilesMatch .(cgi|shtml|phtml|php)$>
SSLOptions +StdEnvVars

BrowserMatch MSIE [2-5]
nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
<Directory /usr/local/www/nextcloud/>
Options -Indexes
AllowOverride All
Require all granted

When starting apache, it also complains about not finding the nokeepalive command (ā€˜Invalid command ā€˜nokeepaliveā€™, perhaps misspelled or defined by a module not included in the server configurationā€™)

Iā€™d really appreciate your help!