Installing the agent on Red Hat
Last updated 2024-06-20
IMPORTANT
This guide only applies to Next-Gen WAF customers with access to the Next-Gen WAF control panel. If you have access to the Next-Gen WAF product in the Fastly control panel, you can only deploy the Next-Gen WAF with the Edge WAF deployment method.
This guide explains how to install the Next-Gen WAF agent on Red Hat.
Prerequisites
Before installing the agent, you need to:
- Determine the version of Red Hat/CentOS you want to use.
- Copy the agent keys for the site that you want the agent to be able to access. You will use the agent keys when configuring the Next-Gen WAF agent package.
Add the package repository
Begin the agent installation by adding the version of the Red Hat/CentOS package repository that you want to use.
Red Hat/CentOS 9
To add the Red Hat/CentOS 9 package, run the following script:
$ sudo tee /etc/yum.repos.d/sigsci.repo <<-'EOF'[sigsci_release]name=sigsci_releasebaseurl=https://yum.signalsciences.net/release/el/9/$basearchrepo_gpgcheck=1gpgcheck=1enabled=1gpgkey=https://yum.signalsciences.net/release/gpgkey https://dl.signalsciences.net/sigsci-agent/gpg.keysslverify=1sslcacert=/etc/pki/tls/certs/ca-bundle.crtEOFRed Hat/CentOS 8
To add the Red Hat/CentOS 8 package, run the following script:
$ sudo tee /etc/yum.repos.d/sigsci.repo <<-'EOF'[sigsci_release]name=sigsci_releasebaseurl=https://yum.signalsciences.net/release/el/8/$basearchrepo_gpgcheck=1gpgcheck=1enabled=1gpgkey=https://yum.signalsciences.net/release/gpgkey https://dl.signalsciences.net/sigsci-agent/gpg.keysslverify=1sslcacert=/etc/pki/tls/certs/ca-bundle.crtEOFRed Hat/CentOS 7
To add the Red Hat/CentOS 7 package, run the following script:
$ sudo tee /etc/yum.repos.d/sigsci.repo <<-'EOF'[sigsci_release]name=sigsci_releasebaseurl=https://yum.signalsciences.net/release/el/7/$basearchrepo_gpgcheck=1gpgcheck=1enabled=1gpgkey=https://yum.signalsciences.net/release/gpgkey https://dl.signalsciences.net/sigsci-agent/gpg.keysslverify=1sslcacert=/etc/pki/tls/certs/ca-bundle.crtEOFRed Hat/CentOS 6
NOTE
After Q2 2017, RHEL6 and CentOS 6 will exit Production Phase 2 according to the Red Hat Enterprise Linux Life Cycle. Only limited,critical security fixes will be issued. You will need to review the lifecycle document for details and plan appropriately.
To add the Red Hat/CentOS 6 package, run the following script:
$ sudo tee /etc/yum.repos.d/sigsci.repo <<-'EOF'[sigsci_release]name=sigsci_releasebaseurl=https://yum.signalsciences.net/release/el/6/$basearchrepo_gpgcheck=1gpgcheck=1enabled=1gpgkey=https://yum.signalsciences.net/release/gpgkey https://dl.signalsciences.net/sigsci-agent/gpg.keysslverify=1sslcacert=/etc/pki/tls/certs/ca-bundle.crtEOFInstall and configure the Next-Gen WAF agent package
Now that you've downloaded the Red Hat/CentOS package repository, you can install and configure the Next-Gen WAF agent package:
- Run the following command to install the Next-Gen WAF agent package:$ sudo yum install sigsci-agent
- Create an empty agent configuration file in the following directory:
/etc/sigsci/agent.conf. - Add the agent keys for your site to the agent configuration file.accesskeyid = "AGENTACCESSKEYHERE"secretaccesskey = "AGENTSECRETACCESSKEYHERE"
- Save the agent configuration file.
Start the Next-Gen WAF agent
Now that you've installed and configured the agent package, you can start the Next-Gen WAF agent.
For Red Hat/CentOS versions 7 and above, run the following command to start the Next-Gen WAF agent:
$ sudo systemctl start sigsci-agentFor Red Hat/CentOS 6, run the following command to start the Next-Gen WAF agent:
$ start sigsci-agentOptionally, enable the agent auto-update service. The service checks the Signal Sciences package downloads site for a new version of the agent and updates the agent when a new version is available.
Next steps
Explore our module options and install the Next-Gen WAF module.
Do not use this form to send sensitive information. If you need assistance, contact support. This form is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
