Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

Browse by topic

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux
860

Set up Node.js application security with Helmet and rate limiting

security
743

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting
715

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases
708

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting
708

Recently published

Integrate ModSecurity 3 with SOAR platforms for automated incident response and threat detection

security
6 hours ago

Monitor Node.js applications with Prometheus and Grafana for comprehensive performance metrics

monitoring
6 hours ago

Set up PostgreSQL 17 streaming replication with PgBouncer connection pooling and load balancing

databases
6 hours ago

Set up ELK Stack for centralized ModSecurity log analysis and monitoring

security
6 hours ago

Implement network security policies with iptables and firewalld for enterprise infrastructure protection

security
11 hours ago
"centralized logging" × Clear all
security Intermediate

Implement network security policies with iptables and firewalld for enterprise infrastructure protection

Configure enterprise-grade network security with iptables and firewalld, implementing zone-based policies, advanced rules, and comprehensive logging for production infrastructure protection.

45 min 4 distros 7 views
security Advanced

Set up centralized security monitoring with ClamAV 1.4 and Elasticsearch 8

Build a comprehensive security monitoring infrastructure with ClamAV antivirus scanning, Elasticsearch log storage, and automated threat detection. This setup provides real-time malware scanning with centralized log aggregation for enterprise security compliance.

45 min 4 distros 10 views
security Intermediate

Configure ClamAV integration with web servers and email systems for automated threat detection

Integrate ClamAV antivirus with NGINX, Apache, Postfix and Dovecot for automated file scanning and email protection. Set up real-time threat detection with monitoring and alerting.

45 min 4 distros 4 views
devops Advanced

Setup Gunicorn blue-green deployment with NGINX for zero downtime Python applications

Configure zero-downtime deployments for Python web applications using Gunicorn blue-green deployment strategy with NGINX reverse proxy, automated health checks, and rollback mechanisms for production reliability.

45 min 4 distros 8 views
security Advanced

Implement Tailscale OAuth integration with identity providers for enterprise authentication

Configure Tailscale with enterprise identity providers including SAML and OIDC authentication, implement access control policies, and manage users across distributed teams for secure zero-trust networking.

45 min 4 distros 24 views
monitoring Intermediate

Configure Prometheus alerting rules for cgroup metrics monitoring and container resource alerts

Set up comprehensive Prometheus alerting rules for monitoring cgroup resource usage with automated threshold alerts for CPU, memory, and I/O limits. Configure Alertmanager notifications for container resource exhaustion and system health monitoring.

45 min 4 distros 20 views
networking Advanced

Configure BIRD BGP routing daemon for advanced routing policies and network automation

Set up BIRD 2.15 BGP daemon with advanced routing policies, route filtering, and automated network management. Configure BGP peering, implement complex routing decisions, and set up route aggregation for production networks.

45 min 4 distros 10 views
monitoring Intermediate

Implement Apache log analysis with GoAccess and ELK stack for real-time monitoring

Set up comprehensive Apache log monitoring with GoAccess for real-time analysis and ELK stack for centralized log processing, creating powerful Kibana dashboards for web server insights and automated alerting.

45 min 4 distros 11 views
hosting Intermediate

Implement Lighttpd 1.4 load balancing with multiple backend servers for high availability

Configure Lighttpd 1.4 with mod_proxy for load balancing across multiple backend web servers. Set up health checks, SSL termination, and failover mechanisms for production environments.

45 min 4 distros 14 views
hosting Intermediate

Configure Caddy 2 with Docker containers and automatic SSL certificates

Set up Caddy 2 as a reverse proxy using Docker with automatic Let's Encrypt SSL certificates. Deploy containerized web applications behind Caddy with zero-downtime SSL management and built-in load balancing.

45 min 4 distros 10 views
security Intermediate

Implement Caddy 2 rate limiting and DDoS protection with advanced security rules

Configure Caddy 2 web server with comprehensive rate limiting, request throttling, and DDoS protection using built-in security modules and advanced filtering rules.

45 min 4 distros 11 views
monitoring Intermediate

Implement log-based monitoring and alerting with Grafana and Loki

Set up comprehensive log aggregation with Loki, centralized visualization with Grafana dashboards, and automated alerting rules for proactive incident response across your infrastructure.

45 min 4 distros 10 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer