Installing the agent on Ubuntu
Last updated 2024-06-20
IMPORTANT
This guide only applies to Next-Gen WAF customers with access to the Next-Gen WAF control panel. If you have access to the Next-Gen WAF product in the Fastly control panel, you can only deploy the Next-Gen WAF with the Edge WAF deployment method.
This guide explains how to install the Next-Gen WAF agent on Ubuntu.
Prerequisites
Before installing the agent, you need to:
- Determine the version of Ubuntu you want to use.
- Copy the agent keys for the site that you want the agent to be able to access. You will use the agent keys when configuring the Next-Gen WAF agent package.
Add the package repository
Begin the agent installation by adding the version of the Ubuntu package repository that you want to use.
Ubuntu 24.04 - Noble
To add the Ubuntu 24.04 - Noble package, run the following script:
$ sudo apt-get update$ sudo apt-get install -y apt-transport-https wget gnupg$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo gpg --dearmor -o /usr/share/keyrings/sigsci.gpg$ sudo echo "deb [signed-by=/usr/share/keyrings/sigsci.gpg] https://apt.signalsciences.net/release/ubuntu/ noble main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list$ sudo apt-get updateUbuntu 22.04 - Jammy
To add the Ubuntu 22.04 - Jammy package, run the following script:
$ sudo apt-get update$ sudo apt-get install -y apt-transport-https wget gnupg$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo gpg --dearmor -o /usr/share/keyrings/sigsci.gpg$ sudo echo "deb [signed-by=/usr/share/keyrings/sigsci.gpg] https://apt.signalsciences.net/release/ubuntu/ jammy main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list$ sudo apt-get updateUbuntu 20.04 - Focal
To add the Ubuntu 20.04 - Focal package, run the following script:
$ sudo apt update$ sudo apt-get install -y apt-transport-https wget$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo apt-key add -$ sudo echo "deb https://apt.signalsciences.net/release/ubuntu/ focal main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list && sudo apt-get updateUbuntu 18.04 - Bionic
To add the Ubuntu 18.04 - Bionic package, run the following script:
$ sudo apt update$ sudo apt-get install -y apt-transport-https wget$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo apt-key add -$ sudo echo "deb https://apt.signalsciences.net/release/ubuntu/ bionic main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list && $ sudo apt-get updateUbuntu 16.04 - Xenial
To add the Ubuntu 16.04 - Xenial package, run the following script:
$ sudo apt-get install -y apt-transport-https wget$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo apt-key add -$ sudo echo "deb https://apt.signalsciences.net/release/ubuntu/ xenial main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list && $ sudo apt-get updateUbuntu 14.04 - Trusty
To add the Ubuntu 14.04 - Trusty package, run the following script:
$ sudo apt-get install -y apt-transport-https wget$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo apt-key add -$ sudo echo "deb https://apt.signalsciences.net/release/ubuntu/ trusty main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list && $ sudo apt-get updateUbuntu 12.04 - Precise
To add the 12.04 - Precise package, run the following script:
$ sudo apt-get install -y apt-transport-https wget$ wget -qO - https://apt.signalsciences.net/release/gpgkey | sudo apt-key add -$ sudo echo "deb https://apt.signalsciences.net/release/ubuntu/ precise main" | sudo tee /etc/apt/sources.list.d/sigsci-release.list && $ sudo apt-get updateInstall and configure the Next-Gen WAF agent package
Now that you've downloaded the Ubuntu package repository, you can install and configure the Next-Gen WAF agent package:
- Run the following command to install the Next-Gen WAF agent package:$ sudo apt-get install sigsci-agent
- Create an empty agent configuration file in the following directory:
/etc/sigsci/agent.conf. - Add the agent keys for your site to the agent configuration file.accesskeyid = "AGENTACCESSKEYHERE"secretaccesskey = "AGENTSECRETACCESSKEYHERE"
- Save the agent configuration file.
Start the Next-Gen WAF agent
Now that you've installed and configured the agent package, you can start the Next-Gen WAF agent by running the following command:
$ sudo systemctl start sigsci-agentOptionally, enable the agent auto-update service. The service checks the Signal Sciences package downloads site for a new version of the agent and updates the agent when a new version is available.
Next steps
Explore our module options and install the Next-Gen WAF module.
Do not use this form to send sensitive information. If you need assistance, contact support. This form is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
