Infrastructure tutorials

Production-grade guides for Linux, servers, security and performance. Copy-paste commands, multi-distro support, written by engineers who run this in production.

/

Browse by topic

46 guides

Linux

System administration, shell scripting, package management

55 guides

Hosting & Servers

Web servers, reverse proxies, SSL, domains

119 guides

Security

Firewalls, hardening, encryption, access control

40 guides

Performance

Caching, optimization, profiling, load testing

81 guides

Databases

MySQL, PostgreSQL, Redis, backups, replication

55 guides

Networking

DNS, load balancing, VPN, TCP/IP, routing

135 guides

DevOps

CI/CD, Docker, Kubernetes, automation

134 guides

Monitoring

Logging, alerting, metrics, observability

Most viewed

Install and configure Deno for web development with systemd and reverse proxy

hosting

1,861

Install and configure Caddy web server with automatic HTTPS and reverse proxy

hosting

1,487

Install and configure Uvicorn ASGI server with systemd and reverse proxy for FastAPI applications

hosting

1,371

Install and configure Ollama for local AI models on Linux servers

devops

1,216

Configure Linux system time synchronization with chrony and NTP hardening

linux

1,150

Recently published

Setup Elasticsearch 8 index lifecycle management for automated log retention and storage optimization

devops

4 hours ago

Configure Kafka Streams state stores and RocksDB optimization for high-performance streaming applications

devops

13 hours ago

Implement Django continuous deployment with Git hooks and automated testing

devops

18 hours ago

Configure Django Redis caching and session storage for high-performance web applications

performance

1 day ago

Set up Kafka Streams testing framework with TopologyTestDriver for automated stream processing validation

devops

1 day ago

"threat-detection" × Clear all

security Intermediate

Set up Fail2ban with Cloudflare API integration for automatic IP blocking and enhanced security

Configure Fail2ban to automatically add malicious IPs to Cloudflare's firewall rules for enhanced protection. This tutorial covers installation, custom filters, API integration, and monitoring for comprehensive security automation across your infrastructure.

45 min 4 distros 86 views

devops Intermediate

Configure Kubernetes network policies with Calico CNI for container security and microsegmentation

Set up Calico CNI in Kubernetes to implement network policies for pod-to-pod traffic control, create ingress and egress rules for microsegmentation, and test policy enforcement to secure container communication at the network layer.

35 min 4 distros 104 views

devops Intermediate

Implement GitLab CI/CD security scanning for Docker images

Set up automated container vulnerability scanning in GitLab CI/CD pipelines with Trivy and registry integration. Implement security gates, quality controls, and automated reporting for production-ready DevSecOps workflows.

45 min 4 distros 155 views

devops Intermediate

Configure Kubernetes Pod Security Standards with admission controllers for policy enforcement

Learn how to implement Kubernetes Pod Security Standards using built-in admission controllers and OPA Gatekeeper for comprehensive policy enforcement, security compliance, and workload protection in production clusters.

25 min 4 distros 115 views

security Advanced

Configure ClamAV cluster scanning for high availability and enterprise threat detection

Build a production-grade ClamAV cluster with HAProxy load balancing, shared virus definitions, and comprehensive monitoring for enterprise-scale threat detection and high availability.

45 min 4 distros 574 views

security Intermediate

Configure OSSEC HIDS for intrusion detection with email alerts and real-time monitoring

Set up OSSEC Host-based Intrusion Detection System with server-agent architecture, custom detection rules, email notifications, and real-time monitoring for comprehensive security monitoring across multiple systems.

45 min 6 distros 547 views

security Intermediate

Configure Linux firewall rules with fail2ban for SSH brute force protection and intrusion prevention

Set up fail2ban to automatically block SSH brute force attacks and protect your Linux server from unauthorized access attempts. Configure custom jails, firewall integration, and email notifications for comprehensive intrusion prevention.

25 min 6 distros 609 views

security Intermediate

Configure ModSecurity 3 web application firewall with OWASP Core Rule Set for advanced threat protection

Set up ModSecurity 3 with OWASP Core Rule Set 4.0 to protect web applications from SQL injection, XSS, and other attacks. Configure integration with Nginx and Apache, implement custom rules, and optimize performance for production environments.

45 min 6 distros 1,068 views

security Advanced

Implement Cilium Tetragon runtime security for Kubernetes with eBPF monitoring and threat detection

Deploy Cilium Tetragon for advanced runtime security monitoring in Kubernetes clusters using eBPF technology. Configure security policies, threat detection rules, and real-time monitoring with Grafana dashboards for comprehensive container protection.

45 min 4 distros 764 views

Need help?

Don't want to manage this yourself?

We handle infrastructure for businesses that depend on uptime. From initial setup to ongoing operations.

Talk to an engineer