Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

Browse by topic

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux
872

Set up Node.js application security with Helmet and rate limiting

security
753

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting
734

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting
728

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases
717

Recently published

Configure OSSEC active response for automated threat blocking

security
1 hour ago

Configure CockroachDB 24.3 multi-region deployment with high availability clustering

databases
1 hour ago

Set up Fail2ban with Cloudflare API integration for automatic IP blocking and enhanced security

security
1 hour ago

Configure keepalived with HAProxy backend health monitoring for high availability load balancing

networking
1 hour ago

Configure ModSecurity machine learning anomaly detection for automated threat protection

security
6 hours ago
"NAT" × Clear all
hosting Intermediate

Configure Apache HTTP/2 with performance optimization and modern security headers

Enable HTTP/2 protocol in Apache with SSL/TLS encryption, implement advanced performance optimization settings including compression and caching, and configure modern security headers for production deployments.

25 min 4 distros 305 views
devops Intermediate

Configure Node.js application logging with Winston and log rotation for production

Set up Winston logger with structured JSON logging, multiple transports, and automated log rotation using winston-daily-rotate-file for production Node.js applications. Configure comprehensive error handling and log management best practices.

25 min 4 distros 266 views
monitoring Advanced

Configure Prometheus long-term storage with Thanos for unlimited data retention

Deploy Thanos components with Prometheus to achieve unlimited data retention using object storage. This advanced setup enables querying years of historical metrics while maintaining high availability and reducing local storage costs.

45 min 4 distros 338 views
security Advanced

Configure advanced iptables rules for bridge network security and container isolation

Implement comprehensive bridge network security using advanced iptables rules to isolate containers, control traffic flow, and prevent lateral movement in virtualized environments.

45 min 4 distros 443 views
security Advanced

Implement Istio security policies with authorization and authentication for Kubernetes service mesh

Configure Istio service mesh security with mTLS authentication, JWT validation, and RBAC authorization policies. This tutorial covers implementing comprehensive security controls for microservices communication in production Kubernetes environments.

45 min 4 distros 297 views
hosting Intermediate

Configure Cherokee web server reverse proxy and load balancing with SSL

Set up Cherokee web server with reverse proxy capabilities, load balancing across backend servers, and SSL encryption for high-performance production environments.

45 min 4 distros 381 views
devops Advanced

Integrate Nexus Repository with Kubernetes and Docker registry authentication

Set up Nexus Repository Manager as a private Docker registry integrated with Kubernetes clusters, configure secure authentication and authorization, and enable automated container image deployment with RBAC controls.

45 min 4 distros 543 views
networking Intermediate

Setup Caddy with Consul service discovery for dynamic load balancing

Configure Caddy web server to automatically discover backend services through Consul, enabling dynamic load balancing without manual configuration updates. This setup provides high availability and automatic failover for microservices architectures.

45 min 4 distros 355 views
networking Advanced

Configure OSPF with FRRouting 10 for dynamic routing protocols and network failover

Set up OSPF dynamic routing with FRRouting 10 for automatic network failover and route redistribution. Configure area authentication, routing policies, and monitoring for enterprise network resilience.

45 min 4 distros 317 views
devops Intermediate

Deploy Deno applications with Docker containers and production optimization

Learn how to containerize Deno applications with Docker using multi-stage builds, security hardening, and production-ready configuration. This tutorial covers creating optimized Dockerfiles, implementing proper caching strategies, and deploying with Docker Compose for scalable web applications.

35 min 4 distros 287 views
security Intermediate

Configure Apache rate limiting and DDoS protection with mod_security and mod_evasive

Set up comprehensive Apache protection against DDoS attacks and malicious traffic using mod_evasive for rate limiting, mod_security with OWASP rules for web application firewall capabilities, and fail2ban integration for automated IP blocking.

25 min 4 distros 348 views
security Advanced

Configure ClamAV cluster scanning for high availability and enterprise threat detection

Build a production-grade ClamAV cluster with HAProxy load balancing, shared virus definitions, and comprehensive monitoring for enterprise-scale threat detection and high availability.

45 min 4 distros 499 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer