Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

41 guides

Linux

System administration, shell scripting, package management

52 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

109 guides

Security

Firewalls, hardening, encryption, access control

38 guides

Performance

Caching, optimization, profiling, load testing

71 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

52 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

127 guides

DevOps

CI/CD, Docker, Kubernetes, automation

122 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Configure Linux system time synchronization with chrony and NTP hardening

linux

906

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

784

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

781

Set up Node.js application security with Helmet and rate limiting

security

760

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

740

Recently published

Monitor ScyllaDB cluster with Prometheus and Grafana for comprehensive performance tracking

monitoring

20 minutes ago

Monitor Jetty performance with JMX and Grafana dashboards

monitoring

5 hours ago

Configure FRRouting route maps and prefix lists for advanced routing policies

networking

10 hours ago

Configure Jetty clustering and session replication for high availability

hosting

19 hours ago

Configure Cherokee web server with MySQL database optimization and performance tuning

hosting

1 day ago

"security monitoring" × Clear all

databases Advanced

Configure Cassandra SSL encryption and authentication with security hardening

Set up comprehensive SSL/TLS encryption for Apache Cassandra with client-to-node and node-to-node security, certificate management, and production-grade authentication hardening.

45 min 4 distros 13 views

security Intermediate

Configure OSSEC vulnerability detection with CVE scanning and automated security alerts

Set up OSSEC Host Intrusion Detection System with vulnerability scanning capabilities, CVE database integration, and automated alerting for comprehensive security monitoring across your infrastructure.

25 min 4 distros 9 views

security Advanced

Integrate OSSEC with Splunk for centralized security monitoring and log analysis

Set up OSSEC HIDS with Splunk Universal Forwarder to centralize security events, create monitoring dashboards, and enable real-time threat correlation across your infrastructure.

45 min 4 distros 7 views

security Advanced

Configure intrusion detection with OSSEC and fail2ban integration

Set up comprehensive intrusion detection by integrating OSSEC HIDS with fail2ban for automated threat response. This advanced configuration provides real-time monitoring, log analysis, and automated IP blocking for enhanced server security.

45 min 4 distros 10 views

security Intermediate

Configure OSSEC active response for automated threat blocking

Set up OSSEC active response to automatically block threats by configuring firewall rules, custom response scripts, and tuning response actions for real-time intrusion prevention.

25 min 4 distros 15 views

security Intermediate

Configure SSH key authentication and security hardening

Replace password authentication with SSH keys and implement comprehensive security hardening including fail2ban, audit logging, and access controls to protect your Linux servers from unauthorized access and brute force attacks.

25 min 4 distros 9 views

security Intermediate

Configure PostgreSQL 17 SSL encryption and advanced security hardening

Set up SSL/TLS encryption, client certificate authentication, and comprehensive security policies for PostgreSQL 17. Includes audit logging, access controls, and firewall configuration for production environments.

45 min 4 distros 23 views

security Advanced

Integrate ModSecurity 3 with SOAR platforms for automated incident response and threat detection

Set up ModSecurity 3 with structured logging, webhook notifications, and API integrations to automatically feed security events into SOAR platforms for real-time threat detection and incident response workflows.

45 min 4 distros 12 views

security Intermediate

Set up ELK Stack for centralized ModSecurity log analysis and monitoring

Configure Elasticsearch 8, Logstash 8, and Kibana 8 to collect, parse, and visualize ModSecurity web application firewall logs from multiple servers for centralized security monitoring and threat detection.

45 min 4 distros 9 views

security Intermediate

Implement network security policies with iptables and firewalld for enterprise infrastructure protection

Configure enterprise-grade network security with iptables and firewalld, implementing zone-based policies, advanced rules, and comprehensive logging for production infrastructure protection.

45 min 4 distros 11 views

security Intermediate

Implement container security with AppArmor and seccomp profiles

Secure your containers with AppArmor mandatory access controls and seccomp system call filtering. Learn to create custom security profiles, implement runtime policies, and monitor container security violations in production environments.

45 min 4 distros 94 views

security Advanced

Set up centralized security monitoring with ClamAV 1.4 and Elasticsearch 8

Build a comprehensive security monitoring infrastructure with ClamAV antivirus scanning, Elasticsearch log storage, and automated threat detection. This setup provides real-time malware scanning with centralized log aggregation for enterprise security compliance.

45 min 4 distros 13 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer