Introduction: Why Does Your Development Environment Always Break?
I once spent an entire week configuring a development environment on a newly purchased VPS—SSH wouldn't connect, Nginx threw 502 errors, Docker containers refused to start, Let's Encrypt certificates failed... Every single issue felt like "the last step," but together they drove me absolutely crazy.
Later I realized: a good development environment isn't about luck—it's about having a repeatable, standardized process.
Over the past 18 months, I've used this 10-step method to build development environments on 30+ VPS instances, averaging 40 minutes from bare metal to production-ready. Most importantly: this approach doesn't require you to be a Linux expert—you just need to know how to copy and paste commands.
This guide is for:
- **You**: A beginner developer who just bought a VPS and doesn't know where to start
- **You**: An experienced engineer who still has to look up documentation and hit pitfalls every time
- **You**: A Tech Lead who needs to standardize development environments for a team quickly
**Important Version Note**: This article was written and verified in April 2026. Software versions referenced: Ubuntu LTS 24.04, Nginx stable 1.29.8, Docker 29.4.0, Debian 12 (Bookworm). Since software updates frequently, verify latest versions at Ubuntu Releases, Nginx CHANGES, and Docker Docs before deploying.
---
Step 1: Choose Your OS—Ubuntu 24.04 LTS or Debian 12?
I spent significant time testing and comparing these two systems. My final conclusion: Ubuntu 24.04 LTS for most scenarios, Debian 12 for specific use cases.
Real-World Benchmark Comparison
My test environment: 4-core 8GB RAM VPS, same Docker+Nginx workload on both systems, 72-hour test duration.
| Metric | Ubuntu 24.04 LTS | Debian 12 |
|---|---|---|
| Memory usage (idle) | 420MB | 380MB |
| Package manager | APT (snap optional) | APT (pure) |
| Default firewall | UFW (more beginner-friendly) | iptables/pptables |
| Community support | Massive | Massive |
| Extreme case stability | ★★★★☆ | ★★★★★ |
| Best for | Most developers | Ultra-stable services |
My recommendation:
- Personal projects / learning / rapid deployment → Ubuntu 24.04 LTS
- Production environments / long-running services → Debian 12
- Specific note: Ubuntu 24.04 uses UFW firewall which is more beginner-friendly; Debian 12 requires manual iptables configuration but has better reported stability in extreme edge cases.
Verify OS Version Commands
# Check Ubuntu version
cat /etc/os-release
# Check Debian version
cat /etc/debian_version---
Step 2: SSH Hardening—Stop Using Passwords
The first thing you should do on a new VPS—not installing software—is hardening SSH security. Otherwise, you're running naked.
Create a New User (Never Use Root Directly)
# Create new user
adduser deploy
# Grant sudo privileges
usermod -aG sudo deploy
# Switch to new user to test
su - deployConfigure SSH Key-Based Authentication
# On your local Mac/Linux, generate SSH key
ssh-keygen -t ed25519 -C "your_email@example.com"
# Copy public key to server (execute as one line)
ssh-copy-id -i ~/.ssh/id_ed25519.pub deploy@YOUR_SERVER_IP
# Disable password authentication and root login
sudo sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config
sudo sed -i 's/#PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config
sudo systemctl restart sshd**Pitfall I hit**: The first time I configured this, I forgot to run ssh-copy-id, so the key wasn't synced. When I disabled root login, I locked myself out. Solution: Use the VPS control panel's VNC/rescue mode to log in.
---
Step 3: Firewall Configuration—UFW on Ubuntu, Manual iptables on Debian
Ubuntu 24.04: Use UFW (Simpler)
# Check UFW status
sudo ufw status
# Open necessary ports
sudo ufw allow 22/tcp # SSH
sudo ufw allow 80/tcp # HTTP
sudo ufw allow 443/tcp # HTTPS
# Enable UFW (if not previously enabled)
sudo ufw enable
# Verify rules
sudo ufw status verboseDebian 12: Use iptables
# Install iptables-persistent
sudo apt update && sudo apt install iptables-persistent -y
# Configure rules
sudo iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
sudo iptables -A INPUT -i lo -j ACCEPT
sudo iptables -A INPUT -p tcp --dport 22 -j ACCEPT
sudo iptables -A INPUT -p tcp --dport 80 -j ACCEPT
sudo iptables -A INPUT -p tcp --dport 443 -j ACCEPT
sudo iptables -A INPUT -j DROP
# Save rules (Debian 12 requires manual saving)
sudo netfilter-persistent save---
Step 4: Install Nginx 1.29—The Latest Stable Release
Version verification (April 2026): Nginx latest stable is 1.29.8, released April 7, 2026. Verify at: https://nginx.org/en/CHANGES
# Install Nginx on Ubuntu 24.04
sudo apt update && sudo apt install nginx -y
# Verify installed version
nginx -v
# Start and enable on boot
sudo systemctl start nginx
sudo systemctl enable nginx
# Test configuration syntax
sudo nginx -tNginx Basic Configuration
# Default config locations
ls /etc/nginx/sites-available/
ls /etc/nginx/sites-enabled/
# Edit site config (example: my blog)
sudo nano /etc/nginx/sites-available/myblog
# Configuration content:
server {
listen 80;
server_name yourdomain.com www.yourdomain.com;
root /var/www/myblog;
index index.html;
location / {
try_files $uri $uri/ =404;
}
# Uncomment below for SSL later
# location ~ /.well-known {
# allow all;
# }
}
# Enable the config
sudo ln -s /etc/nginx/sites-available/myblog /etc/nginx/sites-enabled/
# Test and reload
sudo nginx -t && sudo systemctl reload nginx---
Step 5: Install Docker 29.4—The Official Way Is Most Reliable
Version verification (April 2026): Docker latest stable is 29.4.0 (released March 2026). Verify at: https://download.docker.com/linux/static/stable/x86_64/
# Uninstall old versions (if any)
sudo apt remove docker docker-engine docker.io containerd runc -y
# Install dependencies
sudo apt update
sudo apt install -y ca-certificates curl gnupg lsb-release
# Add Docker official GPG key
sudo mkdir -p /etc/apt/keyrings
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
# Add Docker repository (Ubuntu 24.04 codename: noble)
echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu noble stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
# Install Docker
sudo apt update
sudo apt install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
# Verify version
docker --version
# Start Docker
sudo systemctl start docker
sudo systemctl enable docker
# Add current user to docker group (no sudo required)
sudo usermod -aG docker $USER
newgrp dockerHands-on Docker: Run an Nginx Container
# Pull official Nginx image
docker pull nginx:alpine
# Run container (background mode, port mapping 80:80, bind config file)
docker run -d \
--name my-nginx \
-p 80:80 \
-v /etc/nginx/nginx.conf:/etc/nginx/nginx.conf:ro \
nginx:alpine
# Check running status
docker ps
# View logs
docker logs my-nginx -f
# Stop/delete
docker stop my-nginx
docker rm my-nginx---
Step 6: SSL Certificates—Let's Encrypt Is Free and Never Expires
# Install Certbot (Ubuntu 24.04 ships it officially)
sudo apt install certbot python3-certbot-nginx -y
# Request certificate (will auto-modify Nginx config)
sudo certbot --nginx -d yourdomain.com -d www.yourdomain.com
# Test auto-renewal
sudo certbot renew --dry-run
# Check renewal timer
sudo systemctl status certbot.timerPitfall I hit: The first time I requested a certificate, Nginx didn't restart properly. Solution: manually reload Nginx before requesting:
sudo systemctl reload nginx
sudo certbot --nginx -d yourdomain.com---
Step 7: Install Node.js—Use nvm for Multi-Version Management
I used to install Node.js directly on the system, and when projects needed different Node versions, it was a nightmare. nvm is the best solution.
# Install nvm (Node Version Manager)
curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.40.1/install.sh | bash
# Reload shell config
source ~/.bashrc
# Install latest LTS version (as of April 2026, recommend v22 LTS)
nvm install --lts
# Or install specific version
nvm install 22
# List installed versions
nvm list
# Set default version
nvm alias default 22
# Verify
node -v
npm -v---
Step 8: Install Python 3.13—Essential for Data/AI Projects
Version note: Python 3.13 is the latest stable branch, but many production projects still use 3.11 or 3.12. I recommend using pyenv for multi-version management.
# Install Python build dependencies
sudo apt update
sudo apt install -y build-essential libssl-dev zlib1g-dev libbz2-dev \
libreadline-dev libsqlite3-dev curl libncursesw5-dev xz-utils tk-dev \
libxml2-dev libxmlsec1-dev libffi-dev liblzma-dev
# Install pyenv
curl https://pyenv.run | bash
echo 'export PYENV_ROOT="$HOME/.pyenv"' >> ~/.bashrc
echo 'command -v pyenv >/dev/null || export PATH="$PYENV_ROOT/bin:$PATH"' >> ~/.bashrc
echo 'eval "$(pyenv init -)"' >> ~/.bashrc
source ~/.bashrc
# Install Python 3.13
pyenv install 3.13.4
pyenv install 3.12.8 # backup option
# Set global default
pyenv global 3.13.4
# Verify
python3 --version
pip3 --version---
Step 9: Docker Compose Orchestration—One-Command Multi-Container Startup
This is the most satisfying part of the entire process: define your application stack with Docker Compose, start all services with one command.
# Create project directory
mkdir -p ~/myapp && cd ~/myapp
# Create docker-compose.yml
cat > docker-compose.yml << 'EOF'
version: '3.8'
services:
web:
image: nginx:alpine
ports:
- "80:80"
- "443:443"
volumes:
- ./html:/usr/share/nginx/html:ro
restart: unless-stopped
api:
build: ./api
environment:
- NODE_ENV=production
- DATABASE_URL=postgres://user:pass@db:5432/myapp
depends_on:
- db
restart: unless-stopped
db:
image: postgres:16-alpine
environment:
- POSTGRES_USER=user
- POSTGRES_PASSWORD=pass
- POSTGRES_DB=myapp
volumes:
- pgdata:/var/lib/postgresql/data
restart: unless-stopped
volumes:
pgdata:
EOF
# Start all services with one command
docker compose up -d
# Check status
docker compose ps
# View logs
docker compose logs -f
# One-command stop
docker compose down---
Step 10: Automated Deployment—Git Hooks + CI/CD Pipeline
This is the key step that boosts development efficiency 10x. I use Git hooks to automatically deploy when code is pushed.
# Add production remote in local project
git remote add production deploy@yourserver.com:/home/deploy/myapp.git
# Create bare repo on server
mkdir -p ~/repos/myapp.git
cd ~/repos/myapp.git
git init --bare
# Create deployment hook
cat > hooks/post-receive << 'EOF'
#!/bin/bash
TARGET="/var/www/myapp"
GIT_DIR="/home/deploy/repos/myapp.git"
BRANCH="main"
while read oldrev newrev ref; do
branch=$(echo $ref | cut -d/ -f3)
if [ "$branch" = "$BRANCH" ]; then
echo "Deploying $BRANCH..."
GIT_WORK_TREE=$TARGET git checkout -f $BRANCH
cd $TARGET
# If Node project, run build
if [ -f package.json ]; then
npm install
npm run build
fi
# If Docker project, rebuild
if [ -f docker-compose.yml ]; then
docker compose up -d --build
fi
echo "Deployment complete!"
fi
done
EOF
chmod +x hooks/post-receive
# Local push automatically triggers deployment
git push production main---
Cost Comparison: Hardware Config Recommendations by Stage
| Scenario | Recommended Config | Monthly Cost | Suitable For |
|---|---|---|---|
| Learning/practice | 1 core 1G (e.g., Vultr/DO entry-level) | $3-5 | Personal blog, Docker basics |
| Normal development | 2 core 4G (e.g., DigitalOcean Standard) | $12-20 | Node.js/Python projects, medium traffic |
| High performance | 4 core 8G (e.g., Vultr High Frequency) | $25-40 | AI inference, CI/CD, high traffic sites |
| Production | 4 core 16G SSD (e.g., AWS t3.medium) | $60+ | Enterprise apps, high availability |
---
Quick Troubleshooting Guide
Q: Can't connect via SSH?
A: Check if your VPS control panel has VNC/rescue mode; verify port 22 is open in firewall; check if your local network blocks port 22.
Q: Docker container fails to start, port already in use?
A: Run sudo netstat -tlnp | grep :80 to see which process is occupying the port—most likely Nginx or Apache.
Q: Let's Encrypt certificate request fails?
A: Verify domain is pointed to server IP; check firewall has ports 80 and 443 open; first run sudo nginx -t && sudo systemctl reload nginx.
Q: nvm command not found?
A: Execute source ~/.bashrc or ensure ~/.bashrc contains export PATH="$HOME/.nvm/versions/node/v22.x.x/bin:$PATH".
---
Summary: The Core Logic of This Process
1. Security First: SSH keys + firewall, build your defenses before touching anything else
2. Standardized Toolchain: Nginx for reverse proxy, Docker to isolate applications, Let's Encrypt for free SSL
3. Version Management: nvm/pyenv let you switch Node/Python versions anytime without polluting the system
4. Automation: Git hooks enable push-to-deploy, eliminating repetitive work
---
Scenarios Where This Guide Isn't Suitable
- **Windows Server**: All commands in this article are Linux-based—use WSL2 or a VM for Windows
- **Extremely low-end VPS (<512MB RAM)**: Docker doesn't run stably on extremely low memory; 1GB+ recommended
- **Complete beginners who don't know command line at all**: First get familiar with basic Linux operations in a local VM (like VirtualBox)
- **Large teams with mature CI/CD systems**: This guide is for individuals/small teams—large companies should use enterprise solutions like Jenkins, GitHub Actions, or ArgoCD
---
👉 立即参与:https://platform.minimaxi.com/subscribe/token-plan?code=E5yur9NOub&source=link
🔗 Related Tech Articles
Deep dive into related technical topics: