Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

41 guides

Linux

System administration, shell scripting, package management

52 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

109 guides

Security

Firewalls, hardening, encryption, access control

38 guides

Performance

Caching, optimization, profiling, load testing

71 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

52 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

127 guides

DevOps

CI/CD, Docker, Kubernetes, automation

121 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux

906

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

781

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

774

Set up Node.js application security with Helmet and rate limiting

security

760

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

739

Recently published

Monitor Jetty performance with JMX and Grafana dashboards

monitoring

1 hour ago

Configure FRRouting route maps and prefix lists for advanced routing policies

networking

6 hours ago

Configure Jetty clustering and session replication for high availability

hosting

15 hours ago

Configure Cherokee web server with MySQL database optimization and performance tuning

hosting

20 hours ago

Configure Cassandra SSL encryption and authentication with security hardening

databases

1 day ago

"access control" × Clear all

security Intermediate

Configure Keycloak OAuth2 integration with web applications using OIDC and JWT tokens

Set up Keycloak as an OAuth2 identity provider with OIDC authentication flows. Configure client applications, implement JWT token validation, and secure NGINX reverse proxy with lua-resty-openidc for production web applications.

45 min 4 distros 107 views

security Intermediate

Configure Grafana LDAP authentication and role-based access control with Active Directory integration

Set up Grafana with LDAP authentication to connect with Active Directory, configure role-based access control for teams, and implement production-ready security policies for enterprise environments.

25 min 4 distros 129 views

security Intermediate

Secure Grafana with OAuth authentication and RBAC integration

Configure Grafana with OAuth SSO authentication, implement role-based access control (RBAC), and harden security with SSL certificates for enterprise-grade monitoring dashboard access.

45 min 4 distros 75 views

devops Advanced

Setup Kafka Schema Registry with Avro serialization for data processing

Configure Confluent Schema Registry with Avro serialization for production Kafka deployments. Includes schema evolution, producer/consumer integration, and SSL security configuration.

45 min 4 distros 85 views

devops Advanced

Integrate HashiCorp Vault with Kubernetes secrets management for secure container orchestration

Configure HashiCorp Vault integration with Kubernetes using the Vault CSI driver and Secrets Operator for automated secret injection and synchronization. This setup enables secure secret management for containerized applications with dynamic secret rotation and policy-based access controls.

45 min 4 distros 79 views

security Advanced

Secure Docker containers with Traefik reverse proxy and Authelia authentication

Set up a production-grade security stack using Traefik v3 reverse proxy with SSL automation and Authelia for multi-factor authentication. This tutorial covers Docker hardening, LDAP integration, and container security monitoring.

45 min 4 distros 87 views

networking Advanced

Configure HAProxy advanced routing with ACLs and maps for intelligent traffic management

Set up sophisticated traffic routing in HAProxy using Access Control Lists (ACLs) and map files for dynamic backend selection, SSL SNI routing, and intelligent request distribution based on headers, paths, and custom conditions.

45 min 4 distros 101 views

databases Intermediate

Install and configure PgBouncer for PostgreSQL connection pooling with performance optimization

Set up PgBouncer to efficiently manage PostgreSQL connections, reduce database load, and improve application performance with proper authentication and monitoring.

25 min 4 distros 74 views

devops Intermediate

Deploy Podman containers with Kubernetes YAML manifests and kubectl integration

Learn how to deploy and manage Podman containers using Kubernetes YAML manifests with kubectl integration. This tutorial covers systemd user services, YAML generation, pod networking, and volume management.

25 min 4 distros 84 views

hosting Intermediate

Configure nginx reverse proxy for Podman containers with SSL and load balancing

Set up nginx as a reverse proxy for Podman containers with SSL termination, health checks, and load balancing. Includes automated SSL certificate management with Let's Encrypt and container integration.

45 min 4 distros 118 views

security Intermediate

Set up SSH bastion host with jump server configuration for secure network access

Configure an SSH bastion host to secure access to private networks, implementing jump server functionality with key-based authentication and access controls for enhanced security.

25 min 4 distros 100 views

security Advanced

Configure OpenVPN LDAP authentication and user management with Active Directory integration

Set up OpenVPN with LDAP authentication to integrate with Active Directory for centralized user management. Configure group-based access control and combine certificate-based authentication with LDAP for enterprise security.

45 min 4 distros 85 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer