Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

47 guides

Linux

System administration, shell scripting, package management

59 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

126 guides

Security

Firewalls, hardening, encryption, access control

42 guides

Performance

Caching, optimization, profiling, load testing

86 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

55 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

142 guides

DevOps

CI/CD, Docker, Kubernetes, automation

143 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting

3,052

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

1,770

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

1,579

Install and configure Ollama for local AI models on Linux servers

devops

1,406

Install and configure Uptime Kuma for website monitoring with SSL and email alerts

monitoring

1,285

Recently published

Implement NGINX Plus active health checks for enterprise environments

hosting

8 hours ago

Setup Prometheus Blackbox Exporter for endpoint monitoring with SSL and alerting

monitoring

13 hours ago

Configure Prometheus alerting with AlertManager notifications and webhook integration

monitoring

18 hours ago

Configure Elasticsearch cross-cluster replication for disaster recovery

databases

23 hours ago

Configure InfluxDB 2.7 clustering for high availability with data replication and automated failover

databases

1 day ago

"security monitoring" × Clear all

networking Advanced

Configure advanced gRPC load balancing with Envoy Proxy health checks and circuit breakers

Set up Envoy Proxy with intelligent gRPC load balancing, health checks, and circuit breakers for production microservices. Includes SSL termination, monitoring integration, and security hardening.

45 min 4 distros 122 views

security Intermediate

Implement Airflow DAG security scanning with Bandit and safety checks

Set up automated security scanning for Apache Airflow DAGs using Bandit for Python code analysis and Safety for vulnerability detection. Configure pre-commit hooks and CI/CD integration for continuous security monitoring.

45 min 4 distros 108 views

networking Advanced

Implement Kubernetes network policies with Calico for microsegmentation

Configure Calico CNI to enforce network policies for pod-to-pod traffic control and namespace isolation. This tutorial covers advanced microsegmentation patterns, ingress/egress rules, and policy monitoring for production Kubernetes security.

45 min 4 distros 286 views

security Intermediate

Configure Falco runtime security for Kubernetes threat detection with eBPF monitoring

Set up Falco with eBPF monitoring to detect runtime security threats in Kubernetes clusters. Configure custom rules, integrate Prometheus metrics, and establish comprehensive threat detection for container workloads.

45 min 4 distros 239 views

security Intermediate

Configure Podman image scanning with Trivy security vulnerability detection

Set up automated container image security scanning using Trivy with Podman to detect vulnerabilities, misconfigurations, and security issues before deploying containers to production.

45 min 4 distros 148 views

performance Advanced

Optimize NGINX performance for high-traffic websites with advanced configuration and tuning

Configure NGINX for maximum performance with worker process optimization, advanced caching strategies, HTTP/2 tuning, and security hardening for high-traffic production environments.

45 min 4 distros 149 views

security Advanced

Configure advanced iptables firewall rules with logging, port knocking, and DDoS protection

Build a production-grade iptables firewall with connection tracking, rate limiting, and port knocking. Includes automated DDoS protection, detailed logging, and security hardening for enterprise environments.

45 min 4 distros 190 views

security Advanced

Secure Docker containers with Traefik reverse proxy and Authelia authentication

Set up a production-grade security stack using Traefik v3 reverse proxy with SSL automation and Authelia for multi-factor authentication. This tutorial covers Docker hardening, LDAP integration, and container security monitoring.

45 min 4 distros 200 views

networking Advanced

Configure HAProxy advanced routing with ACLs and maps for intelligent traffic management

Set up sophisticated traffic routing in HAProxy using Access Control Lists (ACLs) and map files for dynamic backend selection, SSL SNI routing, and intelligent request distribution based on headers, paths, and custom conditions.

45 min 4 distros 232 views

monitoring Intermediate

Set up NGINX log analysis and monitoring with Prometheus and Grafana dashboards

Configure comprehensive NGINX monitoring with Prometheus exporters, structured log parsing, and real-time Grafana dashboards for web server observability and performance analysis.

45 min 4 distros 619 views

security Intermediate

Implement container security monitoring with Falco runtime detection

Set up Falco for real-time container security monitoring with runtime threat detection, Kubernetes integration, and automated alerting through Grafana dashboards.

45 min 4 distros 219 views

security Intermediate

Configure intrusion detection with OSSEC and Wazuh for real-time security monitoring

Set up comprehensive host-based intrusion detection with OSSEC HIDS and Wazuh manager for real-time security monitoring, file integrity checking, and automated threat response across your infrastructure.

45 min 4 distros 256 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer