Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

40 guides

Linux

System administration, shell scripting, package management

49 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

104 guides

Security

Firewalls, hardening, encryption, access control

37 guides

Performance

Caching, optimization, profiling, load testing

67 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

49 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

127 guides

DevOps

CI/CD, Docker, Kubernetes, automation

118 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux

867

Set up Node.js application security with Helmet and rate limiting

security

753

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

731

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

723

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

714

Recently published

Configure ModSecurity machine learning anomaly detection for automated threat protection

security

3 hours ago

Configure NGINX HTTP/2 server push and connection multiplexing

performance

3 hours ago

Configure NGINX SSL certificate automation with Certbot and renewal monitoring

hosting

3 hours ago

Monitor FastAPI applications with Prometheus and Grafana for production observability

monitoring

3 hours ago

Configure logrotate with Elasticsearch and Kibana integration for automated log management

monitoring

8 hours ago

"networking" × Clear all

networking Intermediate

Setup Tailscale site-to-site VPN with multiple exit nodes for redundancy

Configure a resilient Tailscale mesh VPN with multiple exit nodes for high availability site-to-site connectivity. Set up subnet routing, automatic failover, and monitoring across distributed networks.

45 min 4 distros 13 views

monitoring Intermediate

Configure Tailscale monitoring with Prometheus and Grafana dashboards

Set up comprehensive monitoring for your Tailscale mesh VPN network using Prometheus metrics collection and Grafana dashboards to track node connectivity, traffic patterns, and performance across your distributed infrastructure.

45 min 4 distros 10 views

security Advanced

Implement Tailscale OAuth integration with identity providers for enterprise authentication

Configure Tailscale with enterprise identity providers including SAML and OIDC authentication, implement access control policies, and manage users across distributed teams for secure zero-trust networking.

45 min 4 distros 34 views

networking Intermediate

Configure network bridge with VLAN support for virtualization

Set up Linux network bridges with VLAN tagging to create isolated network segments for virtual machines and containers. This enables advanced networking scenarios with traffic separation and trunk port functionality.

25 min 4 distros 14 views

devops Intermediate

Set up OpenLiteSpeed with Docker containers for development

Deploy OpenLiteSpeed web server in Docker containers with PHP-FPM, SSL certificates, and persistent volumes for scalable development environments.

45 min 4 distros 7 views

networking Advanced

Implement WireGuard multi-site mesh networking with automatic routing and failover

Deploy a scalable WireGuard mesh network across multiple sites with automatic routing, failover mechanisms, and centralized management for high-availability site-to-site connectivity.

45 min 4 distros 45 views

devops Advanced

Set up Kubernetes custom metrics autoscaling with Prometheus adapter for application-specific scaling

Configure Prometheus adapter to expose custom application metrics to Kubernetes Horizontal Pod Autoscaler for intelligent scaling based on business metrics like queue depth, response time, and user load instead of basic CPU/memory usage.

45 min 4 distros 63 views

devops Intermediate

Configure Kubernetes network policies with Calico CNI for container security and microsegmentation

Set up Calico CNI in Kubernetes to implement network policies for pod-to-pod traffic control, create ingress and egress rules for microsegmentation, and test policy enforcement to secure container communication at the network layer.

35 min 4 distros 25 views

devops Advanced

Setup Tekton Pipelines 0.62 for Kubernetes CI/CD with security scanning integration

Configure Tekton Pipelines for cloud-native CI/CD with automated security scanning, Git webhooks, and production-ready RBAC policies. Build secure container pipelines with integrated vulnerability detection and compliance checks.

45 min 4 distros 22 views

security Advanced

Implement Podman pod security with network policies and microsegmentation

Secure Podman pods with custom network policies, traffic filtering, and microsegmentation using CNI plugins and netavark. Implement zero-trust networking with firewall rules and container isolation.

45 min 4 distros 67 views

devops Advanced

Configure Spark Kubernetes Operator with MinIO for cloud-native analytics

Deploy Apache Spark on Kubernetes with the Spark Operator and MinIO object storage for scalable big data processing. Configure RBAC, SSL certificates, and persistent storage for production-ready analytics workloads.

45 min 4 distros 40 views

devops Advanced

Configure Consul Connect with Kubernetes integration for secure service mesh communication

Set up Consul Connect as a service mesh on Kubernetes with Helm, enabling automatic mTLS encryption, service discovery, and traffic routing between microservices for secure inter-service communication.

45 min 4 distros 50 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer