Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

47 guides

Linux

System administration, shell scripting, package management

59 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

126 guides

Security

Firewalls, hardening, encryption, access control

42 guides

Performance

Caching, optimization, profiling, load testing

86 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

55 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

142 guides

DevOps

CI/CD, Docker, Kubernetes, automation

143 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting

3,047

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

1,770

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

1,579

Install and configure Ollama for local AI models on Linux servers

devops

1,405

Install and configure Uptime Kuma for website monitoring with SSL and email alerts

monitoring

1,283

Recently published

Implement NGINX Plus active health checks for enterprise environments

hosting

7 hours ago

Setup Prometheus Blackbox Exporter for endpoint monitoring with SSL and alerting

monitoring

12 hours ago

Configure Prometheus alerting with AlertManager notifications and webhook integration

monitoring

17 hours ago

Configure Elasticsearch cross-cluster replication for disaster recovery

databases

22 hours ago

Configure InfluxDB 2.7 clustering for high availability with data replication and automated failover

databases

1 day ago

"chrony" × Clear all

security Advanced

Configure SSH certificate authentication with CA signing for secure server access

Set up SSH certificate-based authentication using a Certificate Authority to eliminate individual key management. Create signed user certificates that provide secure, scalable access control for multiple servers and users.

45 min 4 distros 105 views

security Intermediate

Configure SSH two-factor authentication with Google Authenticator TOTP

Add an extra layer of security to SSH logins by requiring both a password and a time-based one-time password (TOTP) generated by Google Authenticator or compatible apps.

25 min 4 distros 152 views

monitoring Intermediate

Monitor system time drift with Prometheus and Grafana alerts

Set up comprehensive time synchronization monitoring with Prometheus node exporter metrics, Grafana dashboards, and automated alerting to prevent system clock drift issues in production environments.

45 min 4 distros 96 views

databases Advanced

Configure CockroachDB 24.3 multi-region deployment with high availability clustering

Deploy CockroachDB across multiple regions with automated failover, data locality controls, and production-grade security. Includes replication zones, load balancing, and disaster recovery strategies.

45 min 4 distros 235 views

security Advanced

Implement Tailscale OAuth integration with identity providers for enterprise authentication

Configure Tailscale with enterprise identity providers including SAML and OIDC authentication, implement access control policies, and manage users across distributed teams for secure zero-trust networking.

45 min 4 distros 882 views

monitoring Intermediate

Implement log-based monitoring and alerting with Grafana and Loki

Set up comprehensive log aggregation with Loki, centralized visualization with Grafana dashboards, and automated alerting rules for proactive incident response across your infrastructure.

45 min 4 distros 116 views

security Advanced

Implement Jaeger security with TLS encryption and authentication for distributed tracing

Secure your Jaeger distributed tracing infrastructure with TLS encryption, JWT-based authentication, and RBAC policies. This tutorial covers certificate generation, collector/query service encryption, and UI authentication through reverse proxy integration.

45 min 4 distros 474 views

networking Intermediate

Configure NTP server with chrony and security hardening for precise time synchronization

Set up a production-grade NTP server using chrony with client access controls, firewall rules, and security hardening. Learn to configure upstream time sources, implement monitoring, and troubleshoot common synchronization issues.

35 min 4 distros 712 views

linux Intermediate

Configure Linux system time synchronization with chrony and NTP hardening

Set up reliable time synchronization with chrony NTP client, configure secure time servers, and implement monitoring to prevent time drift on production servers.

25 min 6 distros 1,205 views

networking Intermediate

Install and configure WireGuard VPN server with client management

Set up a secure WireGuard VPN server with automated client management, including key generation, firewall configuration, and traffic routing for remote access.

25 min 6 distros 792 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer