Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

Browse by topic

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting
5,514

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting
2,100

Install and configure Ollama for local AI models on Linux servers

devops
1,997

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting
1,888

Install and configure Uptime Kuma for website monitoring with SSL and email alerts

monitoring
1,714

Recently published

Implement Network Time Security (NTS) for encrypted time synchronization with chrony

security
8 hours ago

Set up container runtime security with Falco and Sysdig for threat detection

security
13 hours ago

Implement Istio security scanning and vulnerability management for Kubernetes service mesh

security
18 hours ago

Set up Kubernetes container image security scanning with Trivy and admission controllers

security
23 hours ago

Configure NTP monitoring with Grafana dashboards and Prometheus alerting

monitoring
1 day ago
"network-policies" × Clear all
security Intermediate

Implement Network Time Security (NTS) for encrypted time synchronization with chrony

Set up Network Time Security (NTS) with chrony to provide cryptographically authenticated and encrypted time synchronization, protecting against time-based attacks and ensuring secure clock synchronization across your infrastructure.

25 min 4 distros 22 views
security Advanced

Set up container runtime security with Falco and Sysdig for threat detection

Configure Falco for runtime security monitoring and Sysdig Agent for container visibility to detect threats in Kubernetes environments. Implement behavioral analysis, custom security rules, and threat detection policies for production container workloads.

45 min 4 distros 29 views
security Advanced

Implement Istio security scanning and vulnerability management for Kubernetes service mesh

Set up comprehensive security scanning and vulnerability management for Istio service mesh using Trivy, Falco, and security policies to protect Kubernetes workloads from threats and compliance violations.

45 min 4 distros 43 views
security Advanced

Set up Kubernetes container image security scanning with Trivy and admission controllers

Implement automated security scanning for Kubernetes container images using Trivy scanner and admission controllers to block vulnerable images before deployment.

45 min 4 distros 27 views
devops Advanced

Implement Kubernetes secrets management with HashiCorp Vault integration

Set up HashiCorp Vault with Kubernetes to dynamically inject secrets into pods using the Vault Secrets Operator. This tutorial covers authentication configuration, operator deployment, and automated secret injection with annotations.

45 min 4 distros 100 views
security Advanced

Integrate ClamAV cluster with file upload APIs for scalable malware scanning

Set up a clustered ClamAV deployment with REST API endpoints for automated malware scanning of file uploads. Configure load balancing, authentication, and monitoring for high-availability antivirus scanning in production environments.

45 min 4 distros 96 views
security Advanced

Configure ClamAV cluster with Kubernetes deployment for high availability antivirus scanning

Deploy a distributed ClamAV antivirus cluster on Kubernetes with persistent storage, load balancing, and monitoring for enterprise-grade threat detection and scanning.

45 min 4 distros 76 views
devops Advanced

Configure Kubernetes secrets management with Vault integration for secure container orchestration

Set up HashiCorp Vault Agent Injector to automatically inject secrets into Kubernetes pods without storing sensitive data in container images or configuration files. This production-grade approach replaces hardcoded secrets with dynamic, secure credential management.

45 min 4 distros 113 views
monitoring Advanced

Monitor Kubernetes network policies with Prometheus and Grafana for enhanced cluster security

Set up comprehensive monitoring for Kubernetes network policies using Prometheus and Grafana. Configure CNI metrics collection, create security dashboards, and implement alerting for policy violations and traffic anomalies.

45 min 4 distros 99 views
devops Intermediate

Configure Kubernetes RBAC with service accounts and role bindings for secure cluster access control

Set up role-based access control in Kubernetes using service accounts, roles, and role bindings to implement least-privilege security principles and granular permission management for applications and users.

25 min 4 distros 115 views
devops Intermediate

Set up GitLab CI/CD with Kubernetes runners for scalable deployments

Configure GitLab Runner with Kubernetes executor to automatically scale CI/CD workloads. Set up RBAC permissions, deploy pipelines to Kubernetes clusters, and implement resource management policies for efficient container orchestration.

45 min 4 distros 90 views
security Advanced

Configure advanced nftables logging and monitoring for network security

Set up comprehensive nftables logging with structured syslog integration, Prometheus metrics collection, and ELK stack analysis. Configure Grafana dashboards for real-time firewall monitoring and automated alerting for security events.

45 min 4 distros 87 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer