Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

46 guides

Linux

System administration, shell scripting, package management

56 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

121 guides

Security

Firewalls, hardening, encryption, access control

40 guides

Performance

Caching, optimization, profiling, load testing

82 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

55 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

139 guides

DevOps

CI/CD, Docker, Kubernetes, automation

136 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting

2,059

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

1,624

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

1,459

Install and configure Ollama for local AI models on Linux servers

devops

1,263

Configure Linux system time synchronization with chrony and NTP hardening

linux

1,170

Recently published

Configure Kubernetes network policies for enhanced cluster security

security

2 hours ago

Set up Kubernetes persistent volume snapshots and backup automation

devops

7 hours ago

Implement Kafka Streams exactly-once processing semantics with Java applications

devops

12 hours ago

Implement ClickHouse backup automation with compression and S3 integration

databases

21 hours ago

Install and configure Filebeat 8.15 for efficient log shipping to ELK stack

monitoring

1 day ago

"firewall rules" × Clear all

security Advanced

Configure advanced iptables firewall rules with logging, port knocking, and DDoS protection

Build a production-grade iptables firewall with connection tracking, rate limiting, and port knocking. Includes automated DDoS protection, detailed logging, and security hardening for enterprise environments.

45 min 4 distros 158 views

security Intermediate

Configure Nexus Repository Manager LDAP authentication for enterprise user management

Set up LDAP authentication for Nexus Repository Manager to enable centralized enterprise user management and seamless integration with Active Directory for secure artifact repository access.

25 min 4 distros 190 views

security Intermediate

Configure Keycloak OAuth2 integration with web applications using OIDC and JWT tokens

Set up Keycloak as an OAuth2 identity provider with OIDC authentication flows. Configure client applications, implement JWT token validation, and secure NGINX reverse proxy with lua-resty-openidc for production web applications.

45 min 4 distros 194 views

security Intermediate

Configure Grafana LDAP authentication and role-based access control with Active Directory integration

Set up Grafana with LDAP authentication to connect with Active Directory, configure role-based access control for teams, and implement production-ready security policies for enterprise environments.

25 min 4 distros 202 views

monitoring Intermediate

Configure Loki with S3 storage backend for scalable centralized logging

Set up Grafana Loki with S3-compatible object storage for scalable log aggregation. Configure retention policies, schema management, and monitoring for production-ready centralized logging infrastructure.

45 min 4 distros 173 views

security Intermediate

Secure Grafana with OAuth authentication and RBAC integration

Configure Grafana with OAuth SSO authentication, implement role-based access control (RBAC), and harden security with SSL certificates for enterprise-grade monitoring dashboard access.

45 min 4 distros 169 views

monitoring Intermediate

Set up Prometheus Alertmanager webhook notifications for Loki log alerts with Grafana integration

Configure Prometheus Alertmanager to send webhook notifications for Loki log-based alerts with proper routing, templating, and Grafana dashboard integration for comprehensive monitoring.

45 min 4 distros 133 views

monitoring Intermediate

Configure NGINX log analysis with Loki and Grafana for centralized monitoring

Set up Loki log aggregation with Promtail agent to collect NGINX logs and create Grafana dashboards for comprehensive web server monitoring and analysis.

45 min 4 distros 151 views

networking Intermediate

Setup HAProxy with Docker container backends for dynamic load balancing

Configure HAProxy 2.8 to automatically discover and load balance traffic across Docker containers with health checks, service discovery, and SSL termination for production-grade dynamic routing.

35 min 4 distros 211 views

security Intermediate

Configure Vault dynamic secrets for databases with PostgreSQL and MySQL integration

Set up HashiCorp Vault's database secrets engine to automatically generate short-lived credentials for PostgreSQL and MySQL databases, improving security by eliminating static passwords and enabling automated credential rotation.

45 min 4 distros 163 views

networking Intermediate

Configure WireGuard site-to-site VPN connections with advanced routing and security

Set up secure network-to-network VPN tunnels using WireGuard with advanced routing, firewall rules, and monitoring for connecting multiple office locations or data centers.

45 min 4 distros 173 views

devops Intermediate

Configure Traefik with Consul service discovery for dynamic load balancing

Set up Traefik 3.1 reverse proxy with Consul service discovery to automatically route traffic to services without manual configuration. Learn dynamic routing, SSL automation, health checks, and monitoring setup for production environments.

25 min 4 distros 172 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer