Why is my Nextcloud frontend so slow?

And your server isn’t chugging into swap correct?

I don’t use apache so if all of that is fine I’m out of ideas. You could try disabling all plugins in nextcloud to see if that does anything. Probably won’t but worth a shot.

From what I can read from your post, maybe you’re missing the cron container? This will inevitably lead to slow requests, because the webcron is used instead.

Surely, your Synology NAS can cause you trouble when using a reverse-proxy. How about making it work without reverse-proxy first and then adding it later? That way you can rule out the proxy as the source of trouble

I’ve just recently set-up a Nextcloud on docker and it’s unfortunately not as convenient as other dockerized projects. However, I think this i being worked on in the repository already if I read the PRs and issues correctly.

Anyway, here are a few gotchas I encountered that might help you:

• I needed a lot of containers
  • nextcloud:stable-fpm-alpine (2 times, 1 for the app, 1 for cron)
  • mariadb (the database)
  • redis:alpine
  • nginx:alpine (for serving static assets)
  • jrcs/letsencrypt-nginx-proxy-companion (for Let’s Encrypt support)
  • jwilder/nginx-proxy (as a front server, exposed on ports 80 and 443)
• You probably don’t need the last two, if you’re planning on using your own reverse-proxy. One can probably also combine nginx-proxy and nginx-alpine, but I wanted to use nginx-proxy with as few configuration files injected as possible, because I like its standard configuration. Additionally, it allows me to easily run other applications on the same docker host if needed and serve them on other domains.
• I manage those containers in docker-compose which is fairly convenient
• Be aware that you cannot use ufw (Uncomplicated Firewall) with docker out-of-the-box. I had to:
  • Disable iptables in docker’s daemon.json so that docker doesn’t mess with the rules that ufw creates
  • Lock down the firewall with ufw and only allow necessary ports in
  • Create a forwarding rule in iptables so that containers can send traffic out of the system and are reachable from the outside
  • Be careful: It’s really easy to expose, say, your redis instance to the world and it’ll be ”bricked“ within minutes by someone who wants to compromise it
• Additionally, I’m mounting a nginx.conf and uploadsize.conf into the nginx containers. They can be copied and/or adapted from here: https://github.com/nextcloud/docker/tree/master/.examples/docker-compose/with-nginx-proxy/mariadb-cron-redis/fpm

If you’re serious about using docker, I can highly recommend to you to take a close look at the example from the official nextcloud/docker repository I linked above and to rely on docker-compose if using multiple containers (which is kinda mandatory for a production setup, you’ll need redis and the cron container, as well as the database).

As to your fear about dependencies, I believe this is highly related to the platform you’re using. It’s my opinion that you should have a really good reason to run on ARM, because you will run into software that’s commonly used, but doesn’t really work that well or not at all on this architecture. If you, however, run on a basic x86 server, it shouldn’t be a problem at all to follow one of the many tutorials on setting up Nextcloud. Updating software will in most cases just be apt-get update && apt-get upgrade or setting up unattended-upgrades or both.

Lastly, I’m not sure if Nextcloud can be run in docker-swarm. While I have no knowledge about that, there’s one thing that speaks against scaling Nextcloud horizontally: It uses one central database, one central configuration and one central repository of files (aside from external storage).

I really hope you’re able to overcome the performance problems, as they’re not normal and not expected in any reasonable setup of Nextcloud, even if using docker.

What is the current memory_limit set to in php?

root@7ef6dd033c35:/usr/local/etc/php/conf.d# cat memory-limit.ini
memory_limit=512M

2. Is this php-fpm?

I’m using the nextcloud:18.0 tag, which is according to my analysis based on the image php:7.3-apache-buster.

And your server isn’t chugging into swap correct?

$ free -h
total used free shared buff/cache available
Mem: 3,8G 2,2G 697M 37M 875M 1,2G
Swap: 8,0G 2,1G 5,9G

It doesn’t look like, or?

I don’t use apache so if all of that is fine I’m out of ideas. You could try disabling all plugins in nextcloud to see if that does anything. Probably won’t but worth a shot.

I think i’ll try that on my test-instance. This one is similar in performance. Nevertheless, thanks for the hints.

From what I can read from your post, maybe you’re missing the cron container?

Ah, nope i’m using the hosts cron. Might be an anti-pattern, but it works. Didn’t knew i can use an additional cron container.

How about making it work without reverse-proxy first and then adding it later? That way you can rule out the proxy as the source of trouble

I can access the login frontend by using the private server ip address of the docker host and the port. And when doing so, loading the frontend takes about 10s.

I’ve just recently set-up a Nextcloud on docker and it’s unfortunately not as convenient as other dockerized projects. However, I think this i being worked on in the repository already if I read the PRs and issues correctly.

My compose file is ~160 lines long. I’m improving it since over two years now. It contains, the following services:

• nextcloud: the main container/webfrontend
  • volumes:
    • data: mounted via docker-volume-netshare and cifs driver on my NAS
    • config: mounted via docker-volume-netshare and cifs driver on my NAS
    • base: named volume on my server (SSD)
    • apps : mounted via docker-volume-netshare and cifs driver on my NAS
• mariadb: the database
  • volumes
  • db:/var/lib/mysql:rw # named volume
  • ./my.cnf:/etc/mysql/my.cnf # custom db configuration
• automysqlbackup: a database backup container
  • volumes
    • mysqlbackup:/backup:rw # docker-volume-netshare + cifs driver
• onlyoffice: well, it’s onlyoffice
  • no volumes
• phpmyadmin: only started in rare cases if required
  • no volumes
• redis
  • no volumes

my comments on your container with an arrow →

• nextcloud:stable-fpm-alpine (2 times, 1 for the app, 1 for cron) → i use only one. cron is done by my host. Not sure if this is correct, but it works. I guess within a swarm i should use the cron container.
• mariadb (the database) → jupp, i have a container in my compose file
• redis:alpine → same here
• nginx:alpine (for serving static assets) → this is covered by my NAS reverse proxy
• jrcs/letsencrypt-nginx-proxy-companion (for Let’s Encrypt support) → is done very conveniently by the Synology NAS
• jwilder/nginx-proxy (as a front server, exposed on ports 80 and 443) → same as above

… it allows me to easily run other applications on the same docker host if needed and serve them on other domains.

that’s actually quite interesting, but again solved in a very convenient way by the Synology NAS. But maybe it would be worth to take a look on it and compare the performance of it.

Be aware that you cannot use ufw

might be a naive question, but i have a router with only the necessary ports opened. Shouldn’t this be sufficient?

If you’re serious about using docker, I can highly recommend to you to take a close look at the example from the official nextcloud/docker repository

Indeed, very interesting!

… a really good reason to run on ARM …

The reason was money. A few years ago, when i started, i started with only the NAS. And of cource i started with a cheap model. Those cheap models were always ARM-based (and still are maybe, i don’t know). As already mentioned, while trying to run a few “server-apps” on this NAS, i ran very often into really nasty dependency problems (including attempts to compile dependent libraries etc.). Therefore i decided to use x86 based machines for my “production” server and to use virtualization. Docker is kind of a virtualization (please don’t start a discussion about that) and it worked and works very well for me (at least for other apps like plex or gitea).

Lastly, I’m not sure if Nextcloud can be run in docker-swarm.

pff, me neither. I tried it with my test instance (docker stack deploy -c docker-compose.yml) but i didn’t succeed on a single-node swarm (scaling was planned for later).

It uses one central database, one central configuration and one central repository of files

My idea was to use (and i’m already using it) docker-volume-netshare for the centralized volumes. Regarding the database: Here i was thinking about setting up a galera cluster, but i don’t know how easy or complicated it is to set this up within a docker swarm. From my understanding there should be a simple receipt to do it, but i haven’t had the time to read the manuals and tutorials on that topic.

Thanks for your magnificent input! I really appreciate it!

It’s using 2GB swap and you have an overall memory of 3.8GB so that’s over 50% in swap.

No that’s not a good thing. Cause of your problems? Who knows. Probably.

I’d say set the memory_limit to 1024 just for kicks and giggles because that helped me but with that much swap being used I wouldn’t bother.

Last thing I’d check is if you have a high I/O wait in top when that initial page load happens. If you do, theres your problem. Either the swap or slow drive. If you don’t I’d check to see if your server is running in power saving mode and has to burst to performance which can take a bit sometimes.

Good luck!

Your router probably includes a basic firewall, and as long as you close all ports that don’t run public services, that should be good enough for basic protection.

Yeah, I agree. There are also other reasons, like using a device with a useful size and shape (like Raspberry Pi).

I second that. Just to be sure: You mount your data, config and apps via cifs from your NAS over the network? So every request for data has to travel your home network from Nextcloud-machine to NAS? I have no experience with cifs mounts, but could imagine that these can be performance bottlenecks as well, especially if the network is in between (even more so if your desktop server is connected via WiFi) … I’d try putting the machine running Nextcloud next to the NAS serving the data and connect both via ethernet cable and see how that works.

Hi,

so i did a vmstat -S M 1 100 > vmstat.log and in parallel i opened my frontpage with chrome (emptied cache before). As far as i can see, swapping looks good and there is no critical waiting i/o. But the colums in (interrupts) and cs (context switches) looks high. What i read in a serverfault forum is, that context switches are normal.

if your server is running in power saving mode

I search the net i can find anything about that. thanks for the tip.

I’d try putting the machine running Nextcloud next to the NAS serving the data and connect both via ethernet cable and see how that works.

They are connected via Gigabit-LAN. There is only one switch in between.

This is the iperf result when running from server → NAS

------------------------------------------------------------
Client connecting to 192.168.1.200, TCP port 4999
TCP window size: 85.0 KByte (default)
------------------------------------------------------------
[  3] local 192.168.1.201 port 35536 connected with 192.168.1.200 port 4999
[ ID] Interval       Transfer     Bandwidth
[  3]  0.0-10.0 sec  1.09 GBytes   940 Mbits/sec

just one further remark. I was able to deploy my test-instance on a single node docker swarm and so far it is working - i am able to access the frontpage and login. Will make further tests and report back.

I don’t know how to read vmstat and you should be looking inside the VM anyway for this information as the host is not the same thing as the guest.

Context switching is not a good sign either. Context switching is an expensive operation.

Anywho, good luck with this. I would personally trash the entire thing and start from scratch on baremetal or a base installation on KVM/LXC.

I’m getting a headache and pain in the guts when i hear/read baremetal. But when this is my last Option, well sure i would try it again.

I don’t know about KVM/LXC. Are these commercial VM-Solutions? Can i make a host-redundant solution with that?

In case of baremetal, what specs (CPU, RAM) would you recommend for a 5-10 user soho installation, if i want to have load page times between 1-2 s?

Dunno there is no official documentation on this.

I was hoping you could tell from your experience ;-). But maybe that’s a separate thread.

No every installation is different and I certainly haven’t tested low end hardware.

I pushed the memory limit to 1024 on my test instance, but the lowest loading time was around 12s.

After i fiddled around a bit with my browser settings i disabled adblock, privacy badger and the firefox integrated tracking protection for that site. After that changes i was down to ~6s.

Afterwards i disabled all apps, and had a load time of 1.5-2s ! Bingo!

Now, slowly enabling back one app after another i was able to identify some apps, that add a few seconds to the loading time:

• federation: around 1.5s (irregardless of the app loaded)

Interestingly disabling the following apps made the loading slower (???)

• Accessibility (~1s)

In summary i disabled the following apps, which i don’t really use and thus reduced the mean loading time from 12s to 4.5s, which is ok for me:

• Announcement center
• Federation
• First run wizard
• News
• Nextcloud announcements
• Phone Sync
• Privacy
• Recommendations
• Social
• Update notification
• Usage survey

I’m leaving the memory_limit at the standard value of 512MB as i don’t see a benefit of increasing it.

Thanks a lot for your hints!

Hello, it’s me again

just wanted to add my latest update on this topic (partly posted also here Nextcloud really slow after installation - #6 by besendorf):

Meanwhile, i made a “bare-metal” test installation on the same host, where my docker container are running. And the bare-metal nextcloud-instance feels lightning fast - sometimes the load times are below 1s. I’m already thinking about moving back to bare-metal or considering the use of VM’s like proxmox. But somehow i still don’t want to give up docker, because i really like the concept.

Hi I know this is an old post but I have NextCloud running on a very low-end Synology NAS although it is slow it’s not too slow for my purposes, wanted to let you know I sovled some performace issues recently I had LDAP running, I disabled this and it’s like night and day, perhaps test this as well

Just my thoughts

External S3 access can also make access to Files app very slow when it is set to update every time. In the setting of the s3 integration you can turn that off. It shaved 3-4 seconds off my response time with Files. It is now responding under 1.5 seconds almost consistently (with Redis).

God. I see too much of @Paradox551 type’s that assume we’re morons and need 24/7 “support” from them… our saviours.