Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

39 guides

Linux

System administration, shell scripting, package management

48 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

101 guides

Security

Firewalls, hardening, encryption, access control

36 guides

Performance

Caching, optimization, profiling, load testing

67 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

49 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

127 guides

DevOps

CI/CD, Docker, Kubernetes, automation

116 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux

860

Set up Node.js application security with Helmet and rate limiting

security

744

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

715

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

710

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

708

Recently published

Integrate ModSecurity 3 with SOAR platforms for automated incident response and threat detection

security

7 hours ago

Monitor Node.js applications with Prometheus and Grafana for comprehensive performance metrics

monitoring

7 hours ago

Set up PostgreSQL 17 streaming replication with PgBouncer connection pooling and load balancing

databases

7 hours ago

Set up ELK Stack for centralized ModSecurity log analysis and monitoring

security

7 hours ago

Implement network security policies with iptables and firewalld for enterprise infrastructure protection

security

12 hours ago

"resource limits" × Clear all

devops Advanced

Deploy Envoy-based service mesh in Kubernetes production environment with SSL and observability

Set up a production-ready Envoy service mesh in Kubernetes with mutual TLS authentication, SSL certificate management, and comprehensive observability through Prometheus monitoring and distributed tracing.

45 min 4 distros 9 views

security Advanced

Implement Envoy proxy JWT authentication with OAuth2 integration

Configure Envoy proxy with JWT authentication filters integrated with Keycloak OAuth2 provider for secure microservices communication and advanced rate limiting policies.

45 min 4 distros 11 views

devops Advanced

Configure Spark Kubernetes Operator with MinIO for cloud-native analytics

Deploy Apache Spark on Kubernetes with the Spark Operator and MinIO object storage for scalable big data processing. Configure RBAC, SSL certificates, and persistent storage for production-ready analytics workloads.

45 min 4 distros 40 views

devops Advanced

Configure Consul Connect with Kubernetes integration for secure service mesh communication

Set up Consul Connect as a service mesh on Kubernetes with Helm, enabling automatic mTLS encryption, service discovery, and traffic routing between microservices for secure inter-service communication.

45 min 4 distros 50 views

devops Advanced

Integrate OPA Gatekeeper with ArgoCD for GitOps policy management

Set up Open Policy Agent Gatekeeper with ArgoCD to enforce Kubernetes admission policies through GitOps workflows. This tutorial covers installation, policy template creation, and automated policy enforcement with monitoring.

45 min 4 distros 27 views

devops Intermediate

Configure Kubernetes Pod Security Standards with admission controllers for policy enforcement

Learn how to implement Kubernetes Pod Security Standards using built-in admission controllers and OPA Gatekeeper for comprehensive policy enforcement, security compliance, and workload protection in production clusters.

25 min 4 distros 37 views

security Intermediate

Configure Falco runtime security for Kubernetes threat detection with eBPF monitoring

Set up Falco with eBPF monitoring to detect runtime security threats in Kubernetes clusters. Configure custom rules, integrate Prometheus metrics, and establish comprehensive threat detection for container workloads.

45 min 4 distros 32 views

monitoring Intermediate

Monitor Kubernetes cluster with Prometheus Operator for comprehensive observability

Set up complete cluster monitoring using Prometheus Operator with automated metrics collection, custom dashboards, and intelligent alerting for production Kubernetes environments.

45 min 4 distros 34 views

monitoring Intermediate

Configure Fluentd with Kubernetes DaemonSet and log routing for centralized collection

Deploy Fluentd as a DaemonSet on Kubernetes for centralized log collection with multi-format parsing, routing to multiple outputs, and RBAC security. Includes configuration for Elasticsearch, S3, and custom log sources.

45 min 4 distros 17 views

devops Advanced

Set up Nomad multi-node cluster with TLS encryption and Consul integration

Deploy a production-ready HashiCorp Nomad cluster with server and client nodes, TLS encryption, and Consul integration for service discovery. Includes workload deployment and monitoring configuration.

45 min 4 distros 38 views

devops Intermediate

Configure Kubernetes secrets management with Sealed Secrets for secure Helm values

Learn to implement Sealed Secrets controller for encrypting Kubernetes secrets in Git repositories, enabling secure GitOps workflows with encrypted Helm values and automated secret management.

45 min 4 distros 13 views

security Advanced

Setup Keycloak SAML integration for enterprise single sign-on with identity providers

Configure Keycloak as a SAML identity provider for enterprise SSO, integrate with external identity providers, and implement secure SAML service provider connections with attribute mapping.

45 min 4 distros 65 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer