Infrastructure tutorials
Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.
Browse by topic
Linux
System administration, shell scripting, package management
Hosting & Servers
Web servers, reverse proxies, SSL, domains
Security
Firewalls, hardening, encryption, access control
Performance
Caching, optimization, profiling, load testing
Databases
MySQL, PostgreSQL, Redis, backups, replication
Networking
DNS, load balancing, VPN, TCP/IP, routing
DevOps
CI/CD, Docker, Kubernetes, automation
Monitoring
Logging, alerting, metrics, observability
Most viewed
Install and configure Deno for web development with systemd and reverse proxy
hostingInstall and configure Caddy web server with automatic HTTPS and reverse proxy
hostingInstall and configure Ollama for local AI models on Linux servers
devopsInstall and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications
hostingInstall and configure Uptime Kuma for website monitoring with SSL and email alerts
monitoringRecently published
Setup Node.js error tracking with Sentry for production monitoring and debugging
monitoringImplement Node.js application monitoring with Prometheus metrics and Grafana dashboards
monitoringImplement OSPF multi-area design with FRRouting and advanced routing policies
networkingConfigure Istio security policies with external authorization services integration
securityImplement Docker network security with custom bridge networks and container isolation
securityConfigure Istio security policies with external authorization services integration
Set up comprehensive Istio security policies with external authorization services, JWT validation, and RBAC integration for enterprise-grade service mesh security and compliance.
Implement Istio security scanning and vulnerability management for Kubernetes service mesh
Set up comprehensive security scanning and vulnerability management for Istio service mesh using Trivy, Falco, and security policies to protect Kubernetes workloads from threats and compliance violations.
Configure Spark on Kubernetes with cluster autoscaling for dynamic workloads
Deploy Apache Spark 3.5 on Kubernetes with automatic cluster scaling, dynamic resource allocation, and comprehensive monitoring for production data processing workloads.
Implement Kubernetes secrets management with HashiCorp Vault integration
Set up HashiCorp Vault with Kubernetes to dynamically inject secrets into pods using the Vault Secrets Operator. This tutorial covers authentication configuration, operator deployment, and automated secret injection with annotations.
Integrate ClamAV cluster with file upload APIs for scalable malware scanning
Set up a clustered ClamAV deployment with REST API endpoints for automated malware scanning of file uploads. Configure load balancing, authentication, and monitoring for high-availability antivirus scanning in production environments.
Optimize MongoDB 8.0 performance with advanced indexing strategies and aggregation pipelines
Master MongoDB 8.0 performance optimization through strategic index design, aggregation pipeline efficiency, and production-ready monitoring. Covers compound indexes, query analysis, memory management, and security hardening for high-throughput database workloads.
Configure CockroachDB SSL encryption and security hardening
Set up SSL/TLS encryption, authentication, and advanced security policies for CockroachDB 24.3 in production environments with certificate management and cluster monitoring.
Configure FastAPI rate limiting and security middleware with Redis and authentication
Set up production-ready FastAPI applications with Redis-backed rate limiting, security middleware, and JWT authentication to protect against abuse and secure your API endpoints.
Setup FastAPI email verification and password reset functionality with Redis and PostgreSQL
Build secure user authentication with email verification and password reset features in FastAPI using Redis for session management and PostgreSQL for user storage.
Configure Kubernetes secrets management with Vault integration for secure container orchestration
Set up HashiCorp Vault Agent Injector to automatically inject secrets into Kubernetes pods without storing sensitive data in container images or configuration files. This production-grade approach replaces hardcoded secrets with dynamic, secure credential management.
Configure Kubernetes RBAC with service accounts and role bindings for secure cluster access control
Set up role-based access control in Kubernetes using service accounts, roles, and role bindings to implement least-privilege security principles and granular permission management for applications and users.
Set up GitLab CI/CD with Kubernetes runners for scalable deployments
Configure GitLab Runner with Kubernetes executor to automatically scale CI/CD workloads. Set up RBAC permissions, deploy pipelines to Kubernetes clusters, and implement resource management policies for efficient container orchestration.
Need help?
Don't want to manage this yourself?
We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.
Talk to an engineer