Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

17 guides

Linux

System administration, shell scripting, package management

22 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

42 guides

Security

Firewalls, hardening, encryption, access control

25 guides

Performance

Caching, optimization, profiling, load testing

34 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

28 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

52 guides

DevOps

CI/CD, Docker, Kubernetes, automation

42 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure ArgoCD for GitOps continuous deployment with RBAC and SSL

devops

424

Install and configure CockroachDB cluster with high availability and distributed SQL

databases

415

Install and configure PostgreSQL 17 with performance tuning and security hardening

databases

411

Install and configure Loki for centralized log aggregation with Grafana integration

monitoring

404

Install and configure WireGuard VPN server with client management

networking

400

Recently published

Configure Nagios SNMP monitoring for network devices with automated discovery and templates

monitoring

5 ore fa

Integrate Elasticsearch 8 with Prometheus monitoring and Grafana dashboards

monitoring

5 ore fa

Set up NGINX web application firewall with ModSecurity 3 and OWASP Core Rule Set

security

5 ore fa

Configure NGINX reverse proxy with advanced caching and load balancing

hosting

5 ore fa

Configure Netdata alerts with Slack and Microsoft Teams for real-time monitoring notifications

monitoring

15 ore fa

"intrusion-detection" × Clear all

security Intermediate

Set up NGINX web application firewall with ModSecurity 3 and OWASP Core Rule Set

Configure a production-grade web application firewall using NGINX with ModSecurity 3 and OWASP Core Rule Set. Includes logging, monitoring, and fail2ban integration for comprehensive threat protection.

45 min 4 distros 62 views

security Intermediate

Implement network security with iptables connection tracking and stateful packet filtering

Configure iptables with connection tracking modules to implement stateful packet filtering, advanced NAT rules, and comprehensive network security monitoring. Build robust firewall rules that track connection states and provide granular control over network traffic.

45 min 4 distros 73 views

networking Intermediate

Configure WireGuard VPN with DNS filtering and ad blocking using Pi-hole and Unbound

Set up a secure WireGuard VPN server with integrated Pi-hole DNS filtering and Unbound recursive resolver for ad blocking and privacy protection. This configuration provides secure remote access while filtering malicious domains and advertisements.

45 min 4 distros 110 views

security Advanced

Set up intrusion detection with OSSEC HIDS and nftables integration for automated threat response

Configure OSSEC Host-based Intrusion Detection System with nftables firewall integration for real-time threat detection and automated response. Monitor system activity, detect intrusions, and automatically block malicious IPs using active response mechanisms.

45 min 4 distros 66 views

security Intermediate

Configure Linux audit logging for security compliance and monitoring

Set up comprehensive audit logging with auditd daemon to track file system changes, process execution, and network connections for security compliance and forensic analysis.

35 min 4 distros 111 views

security Beginner

Configure Linux audit system with auditd for security compliance and file monitoring

Set up the Linux audit system with auditd to monitor file access, user activities, and system calls for security compliance. Learn to create audit rules, analyze logs, and track privilege escalations.

25 min 6 distros 273 views

security Intermediate

Configure Linux firewall rules with fail2ban for SSH brute force protection and intrusion prevention

Set up fail2ban to automatically block SSH brute force attacks and protect your Linux server from unauthorized access attempts. Configure custom jails, firewall integration, and email notifications for comprehensive intrusion prevention.

25 min 6 distros 127 views

linux Intermediate

Configure Linux system firewall with nftables and security hardening

Learn how to configure nftables firewall with advanced security rules, rate limiting, and fail2ban integration. This tutorial covers migration from iptables, logging configuration, and production-grade security hardening for modern Linux systems.

45 min 6 distros 130 views

security Intermediate

Install and configure Fail2ban with advanced rules and email alerts

Set up Fail2ban intrusion prevention system with custom SSH, web server, and application protection rules. Configure email notifications and advanced filtering to automatically block malicious IP addresses based on log patterns.

45 min 6 distros 186 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer