Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

47 guides

Linux

System administration, shell scripting, package management

63 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

141 guides

Security

Firewalls, hardening, encryption, access control

45 guides

Performance

Caching, optimization, profiling, load testing

94 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

56 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

149 guides

DevOps

CI/CD, Docker, Kubernetes, automation

162 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting

5,721

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

2,155

Install and configure Ollama for local AI models on Linux servers

devops

2,044

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

1,914

Install and configure Uptime Kuma for website monitoring with SSL and email alerts

monitoring

1,757

Recently published

Setup Node.js error tracking with Sentry for production monitoring and debugging

monitoring

2 hours ago

Implement Node.js application monitoring with Prometheus metrics and Grafana dashboards

monitoring

11 hours ago

Implement OSPF multi-area design with FRRouting and advanced routing policies

networking

16 hours ago

Configure Istio security policies with external authorization services integration

security

21 hours ago

Implement Docker network security with custom bridge networks and container isolation

security

1 day ago

"compliance" × Clear all

security Advanced

Configure Istio security policies with external authorization services integration

Set up comprehensive Istio security policies with external authorization services, JWT validation, and RBAC integration for enterprise-grade service mesh security and compliance.

45 min 4 distros 41 views

security Advanced

Implement Istio security scanning and vulnerability management for Kubernetes service mesh

Set up comprehensive security scanning and vulnerability management for Istio service mesh using Trivy, Falco, and security policies to protect Kubernetes workloads from threats and compliance violations.

45 min 4 distros 66 views

security Advanced

Set up Kubernetes container image security scanning with Trivy and admission controllers

Implement automated security scanning for Kubernetes container images using Trivy scanner and admission controllers to block vulnerable images before deployment.

45 min 4 distros 37 views

monitoring Intermediate

Configure NTP monitoring with Grafana dashboards and Prometheus alerting

Set up comprehensive time synchronization monitoring using chrony, Prometheus node exporter, and custom Grafana dashboards with alerting for time drift and NTP service failures.

25 min 4 distros 76 views

security Intermediate

Configure Apache SSL hardening with perfect forward secrecy and modern security protocols

Harden Apache HTTP server with modern SSL/TLS configuration, perfect forward secrecy cipher suites, and security headers to protect against common web vulnerabilities and ensure compliance with security standards.

25 min 4 distros 99 views

databases Advanced

Configure MongoDB sharding with zone-based data distribution for geographic workloads

Set up MongoDB sharding with geographic zones to distribute data based on location, ensuring optimal performance for global applications and regulatory compliance.

45 min 4 distros 85 views

devops Advanced

Configure Kubernetes secrets management with Vault integration for secure container orchestration

Set up HashiCorp Vault Agent Injector to automatically inject secrets into Kubernetes pods without storing sensitive data in container images or configuration files. This production-grade approach replaces hardcoded secrets with dynamic, secure credential management.

45 min 4 distros 128 views

monitoring Advanced

Monitor Kubernetes network policies with Prometheus and Grafana for enhanced cluster security

Set up comprehensive monitoring for Kubernetes network policies using Prometheus and Grafana. Configure CNI metrics collection, create security dashboards, and implement alerting for policy violations and traffic anomalies.

45 min 4 distros 115 views

security Intermediate

Configure Node.js SSL certificates and HTTPS security hardening for production servers

Set up production-grade SSL/TLS encryption for Node.js applications with certificate management, secure cipher suites, and comprehensive security headers including HSTS implementation.

45 min 4 distros 99 views

security Advanced

Configure advanced nftables logging and monitoring for network security

Set up comprehensive nftables logging with structured syslog integration, Prometheus metrics collection, and ELK stack analysis. Configure Grafana dashboards for real-time firewall monitoring and automated alerting for security events.

45 min 4 distros 104 views

security Intermediate

Implement Kubernetes network policies for pod-to-pod security and traffic isolation

Set up granular network security in Kubernetes using Calico CNI with default-deny policies and pod-to-pod communication rules for microsegmentation.

45 min 4 distros 112 views

security Advanced

Configure audit compliance automation with Ansible for security monitoring and reporting

Build comprehensive security audit compliance automation using Ansible playbooks to enforce security policies, monitor system configurations, and generate compliance reports across your Linux infrastructure fleet.

45 min 4 distros 96 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer