Rocky

Installation on Rocky Linux

Requirements

Rocky Linux's flexibility as a server or desktop makes it an ideal platform to host the Netify agent. If you are running Rocky Linux as your desktop, a single network card is sufficient if you're looking to classify traffic only from your personal device. This is not a very common integration, however, it can be quite useful for evaluation the solution quickly - sometimes referred to as 'kicking the tires'.

More often, Rocky Linux is used on baremetal hardware or inside a virtual machine (VM). In this role, the system will need at least 2 network interfaces:

  • Network Interface #1: used to access the operating system and Netify
  • Network Interface #2: used to ingest port mirror traffic from LAN segment 1
  • Network Interface #N: used to ingest port mirror traffic from LAN segment N (optional)

You will also need to know which version of Rocky Linux you are running in order to add the correct repository. If you're not sure, use the cat /etc/os-release command:

cat /etc/os-release 
NAME="Rocky Linux"
VERSION="9.3 (Blue Onyx)"
ID="rocky"
ID_LIKE="rhel centos fedora"
VERSION_ID="9.3"
PLATFORM_ID="platform:el9"
PRETTY_NAME="Rocky Linux 9.3 (Blue Onyx)"
ANSI_COLOR="0;32"
LOGO="fedora-logo-icon"
CPE_NAME="cpe:/o:rocky:rocky:9::baseos"
HOME_URL="https://rockylinux.org/"
BUG_REPORT_URL="https://bugs.rockylinux.org/"
SUPPORT_END="2032-05-31"
ROCKY_SUPPORT_PRODUCT="Rocky-Linux-9"
ROCKY_SUPPORT_PRODUCT_VERSION="9.3"
REDHAT_SUPPORT_PRODUCT="Rocky Linux"
REDHAT_SUPPORT_PRODUCT_VERSION="9.3"
In version 5, the Netify Agent and plugin architecture was extended. It would be very unusual to only install the agent without one or more plugins. However, we keep these steps separate for clarity.

Adding the Netify Repository vs Command Line

Adding the Netify repository to your Rocky Linux server has three main advantages:

  • Automatically resolves and install dependencies
  • Increases security through the use of signed packages
  • Allows for auto or simplified updates in the future

Rocky Linux 9

Adding Netify Repository

sudo yum update
sudo rpm --import http://download.netify.ai/5/rockylinux/9/stable/RPM-GPG-KEY-netify
sudo curl https://download.netify.ai/5/rockylinux/9/netify.repo -o /etc/yum.repos.d/netify.repo
sudo yum install netifyd

Command Line Installation

Open a browser and navigate to https://download.netify.ai/5/rockylinux/9/stable/x86_64/. Find the version you would like to install, right click over the filename and select "Copy link address". 

sudo yum update
cd /tmp/
curl https://download.netify.ai/5/rockylinux/9/stable/x86_64/netifyd-5.0.44-1.os9.x86_64.rpm -O
sudo yum install ./netifyd-5.0.44-1.os9.x86_64.rpm

Rocky 8

Adding Netify Repository

sudo yum update
sudo rpm --import http://download.netify.ai/5/rockylinux/8/stable/RPM-GPG-KEY-netify
sudo curl https://download.netify.ai/5/rockylinux/8/netify.repo -o /etc/yum.repos.d/netify.repo
sudo yum install netifyd

Command Line Installation

Open a browser and navigate to https://download.netify.ai/5/rockylinux/8/stable/x86_64/. Find the version you would like to install, right click over the filename and select "Copy link address". 

sudo yum update
cd /tmp/
curl https://download.netify.ai/5/rockylinux/8/stable/x86_64/netifyd-5.0.44-1.os8.x86_64.rpm -O
sudo yum install ./netifyd-5.0.44-1.os8.x86_64.rpm

ARM

Please contact us if you would like more information about compiling for architectures other than amd64.

Post Installation

After installing the agent, verify the installation and some path information using the -s (status) argument. 

netifyd -s
Netify Agent/5.0.44-1-HEAD-nnnn-aaaaaaaa (debian; linux-gnu; x86_64; conntrack; netlink; dns-cache; tpv3; tcmalloc; regex)
✗ agent is not running: PID 0
• persistent state path: /etc/netifyd
• volatile state path: /var/run/netifyd
! agent run-time status could not be determined.
The Netify agent is not configured to start post install. It will not be running by default and should expect to see the 'not running' and 'run-time status could not be determined' messages.

Netify Informatics

Network Intelligence Netify Informatics is an optional, cloud-based, SaaS service. It uses analytics and Machine Learning to transform telemetry originating from the Netify DPI Agent into high-level network intelligence and visibility. The solution provides insights into what's happening on the network in areas that include:

  • Device Identification and Management
  • Cybersecurity Risk
  • Forensics
  • Regulatory Compliance

To learn more about Netify Informatics, click here.

In addition to the Netify agent being installed, two plugins are required:

If you installed the agent by configuring a Netify software repository, simply run: 
yum update
yum install netify-proc-core netify-sink-http
If you installed the agent manually, you will also need to install the plugin packages manually.

Once the plugins have been installed, run the following two commands: 

netifyd --enable-informatics
netifyd -p
The first command will enable and auto configure the two plugins that were installed as well as restarting the Netify agent. The second command will display your Netify Agent UUID (in the form xx-xx-xx-xx) that will be needed when you provision the agent to your Netify Informatics account.

Failure to run the netifyd command with the --enable-informatics option will result in a Provision code not found error during the provisioning wizard.

Next Steps

Documentation


Netify DPI Agent


Technical Support

Haven't found the answers you're looking for?

Contact Us