Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

41 guides

Linux

System administration, shell scripting, package management

50 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

107 guides

Security

Firewalls, hardening, encryption, access control

38 guides

Performance

Caching, optimization, profiling, load testing

68 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

50 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

127 guides

DevOps

CI/CD, Docker, Kubernetes, automation

118 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux

879

Set up Node.js application security with Helmet and rate limiting

security

756

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

743

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

737

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

723

Recently published

Configure systemd service resource limits and security isolation

linux

5 hours ago

Configure NGINX SSL termination with Redis session storage

hosting

5 hours ago

Configure intrusion detection with OSSEC and fail2ban integration

security

5 hours ago

Set up Varnish 7 cluster with load balancing across multiple backends

performance

5 hours ago

Configure OSSEC active response for automated threat blocking

security

10 hours ago

"validation" × Clear all

devops Intermediate

Configure Kubernetes Pod Security Standards with admission controllers for policy enforcement

Learn how to implement Kubernetes Pod Security Standards using built-in admission controllers and OPA Gatekeeper for comprehensive policy enforcement, security compliance, and workload protection in production clusters.

25 min 4 distros 39 views

monitoring Intermediate

Configure Prometheus Blackbox Exporter for endpoint monitoring with SSL and alerting

Set up Prometheus Blackbox Exporter to monitor HTTP, HTTPS, DNS, TCP, and ICMP endpoints with SSL certificate validation and automated alerting for comprehensive uptime monitoring.

25 min 4 distros 66 views

devops Intermediate

Configure Ansible Vault for secret management and encryption with playbook automation

Set up Ansible Vault to encrypt sensitive data like passwords, API keys, and certificates in your playbooks. Learn to create encrypted variables, manage vault passwords, and integrate secure secret handling into automated deployments.

25 min 4 distros 47 views

security Advanced

Set up Apache Airflow DAG security policies and data governance with RBAC and audit logging

Configure comprehensive security for Apache Airflow with role-based access control, DAG-level permissions, data lineage tracking, and audit logging for compliance monitoring in production environments.

45 min 4 distros 63 views

devops Intermediate

Configure Apache Airflow DAG version control with Git and CI/CD pipelines

Set up Git-based version control for Apache Airflow DAGs with automated CI/CD pipelines for testing and deployment. Implement DAG synchronization, validation workflows, and production-ready deployment strategies.

45 min 4 distros 49 views

security Intermediate

Configure SSL certificates and security hardening for Nexus Repository Manager

Secure your Nexus Repository Manager with SSL/TLS certificates, enforce HTTPS connections, and implement comprehensive security hardening including authentication controls, access policies, and audit logging for production environments.

45 min 4 distros 109 views

security Intermediate

Configure Keycloak custom themes and branding with SSL integration and production deployment

Set up custom Keycloak themes with your organization's branding, implement SSL certificates, and deploy to production with hot reload development workflow and performance optimization.

45 min 4 distros 65 views

security Advanced

Setup Keycloak SAML integration for enterprise single sign-on with identity providers

Configure Keycloak as a SAML identity provider for enterprise SSO, integrate with external identity providers, and implement secure SAML service provider connections with attribute mapping.

45 min 4 distros 69 views

security Intermediate

Configure Keycloak OAuth2 integration with web applications using OIDC and JWT tokens

Set up Keycloak as an OAuth2 identity provider with OIDC authentication flows. Configure client applications, implement JWT token validation, and secure NGINX reverse proxy with lua-resty-openidc for production web applications.

45 min 4 distros 95 views

devops Intermediate

Deploy applications to Kubernetes with Helm charts and production best practices

Learn how to create production-ready Helm charts for Kubernetes deployments with proper templating, values management, security configurations, and environment-specific customizations for scalable application orchestration.

45 min 4 distros 61 views

monitoring Intermediate

Set up Prometheus Alertmanager webhook notifications for Loki log alerts with Grafana integration

Configure Prometheus Alertmanager to send webhook notifications for Loki log-based alerts with proper routing, templating, and Grafana dashboard integration for comprehensive monitoring.

45 min 4 distros 32 views

security Intermediate

Implement two-factor authentication for SSH with Google Authenticator and TOTP

Secure your SSH connections by adding TOTP-based two-factor authentication using Google Authenticator and PAM modules for an additional layer of protection beyond passwords and keys.

25 min 4 distros 57 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer