Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

Browse by topic

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux
869

Set up Node.js application security with Helmet and rate limiting

security
753

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting
732

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting
725

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases
714

Recently published

Configure OSSEC active response for automated threat blocking

security
5 minutes ago

Configure CockroachDB 24.3 multi-region deployment with high availability clustering

databases
6 minutes ago

Set up Fail2ban with Cloudflare API integration for automatic IP blocking and enhanced security

security
9 minutes ago

Configure keepalived with HAProxy backend health monitoring for high availability load balancing

networking
11 minutes ago

Configure ModSecurity machine learning anomaly detection for automated threat protection

security
5 hours ago
"networking" × Clear all
devops Advanced

Configure Consul Connect with Kubernetes integration for secure service mesh communication

Set up Consul Connect as a service mesh on Kubernetes with Helm, enabling automatic mTLS encryption, service discovery, and traffic routing between microservices for secure inter-service communication.

45 min 4 distros 50 views
networking Advanced

Implement Kubernetes network policies with Calico for microsegmentation

Configure Calico CNI to enforce network policies for pod-to-pod traffic control and namespace isolation. This tutorial covers advanced microsegmentation patterns, ingress/egress rules, and policy monitoring for production Kubernetes security.

45 min 4 distros 110 views
devops Advanced

Configure Istio distributed tracing with Jaeger and Zipkin for comprehensive microservices observability

Set up comprehensive distributed tracing in your Istio service mesh using both Jaeger and Zipkin backends. Configure telemetry collection, trace sampling, and monitoring dashboards for full microservices observability.

45 min 4 distros 62 views
devops Advanced

Integrate Jaeger with Kubernetes and Istio service mesh for distributed tracing

Deploy Jaeger operator on Kubernetes with Istio telemetry integration for comprehensive distributed tracing across microservices. Configure Elasticsearch backend for production-grade trace storage and implement automated service discovery.

45 min 4 distros 20 views
networking Advanced

Configure Cilium BGP peering with MetalLB integration for Kubernetes load balancing

Set up Cilium CNI with BGP routing capabilities and integrate with MetalLB speaker components for bare-metal Kubernetes load balancing. This configuration enables external traffic routing and service discovery in on-premises environments.

45 min 4 distros 27 views
devops Advanced

Implement Istio circuit breaker and retry policies for microservices resilience and fault tolerance

Configure Istio destination rules with circuit breaker patterns, implement retry policies with exponential backoff, and set up comprehensive fault injection testing for microservices resilience in Kubernetes service mesh environments.

45 min 4 distros 49 views
devops Advanced

Configure Istio ingress gateway with SSL certificates and custom domains for Kubernetes service mesh

Set up Istio ingress gateway with automated SSL certificate management using cert-manager, configure custom domain routing with VirtualService, and implement TLS termination for secure service mesh traffic.

35 min 4 distros 19 views
devops Intermediate

Setup Kubernetes ingress controller with cert-manager and Helm for automated SSL certificate management

Deploy NGINX Ingress Controller and cert-manager using Helm to automatically provision and manage SSL certificates for your Kubernetes applications with Let's Encrypt integration.

25 min 4 distros 31 views
devops Intermediate

Deploy applications to Kubernetes with Helm charts and production best practices

Learn how to create production-ready Helm charts for Kubernetes deployments with proper templating, values management, security configurations, and environment-specific customizations for scalable application orchestration.

45 min 4 distros 60 views
devops Intermediate

Configure Kubernetes OpenTelemetry auto-instrumentation for microservices observability

Set up OpenTelemetry Operator in Kubernetes to automatically instrument microservices with distributed tracing. Enable seamless observability across your application stack without modifying application code.

45 min 4 distros 26 views
security Advanced

Secure Docker containers with Traefik reverse proxy and Authelia authentication

Set up a production-grade security stack using Traefik v3 reverse proxy with SSL automation and Authelia for multi-factor authentication. This tutorial covers Docker hardening, LDAP integration, and container security monitoring.

45 min 4 distros 69 views
devops Intermediate

Integrate MinIO with Kubernetes for persistent storage and object data management

Deploy MinIO on Kubernetes using the operator for scalable object storage. Configure persistent volumes, high availability tenants, and secure ingress with SSL certificates.

45 min 4 distros 72 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer