ADC

Deploy a Citrix ADC VPX instance on AWS

You can launch a Citrix Citrix ADC VPX  instance on Amazon Web Services (AWS). The Citrix ADC VPX appliance is available as an Amazon Machine Image (AMI) in AWS marketplace. A Citrix ADC VPX instance on AWS enables customer like you to leverage AWS Cloud computing capabilities and use Citrix ADC load balancing and traffic management features for their business needs. The VPX instance supports all the traffic management features of a physical Citrix ADC appliance, and they can be deployed as standalone instances or in HA pairs.

This section includes the following topics:

  • AWS terminology
  • How a Citrix ADC VPX instance on AWS works
  • Supported instance type,  ENI, and IP addresses

AWS terminology

Here is a brief description of the terms used in this document. For more information, see AWS Glossary.

Term Defintion
Amazon Machine Image (AMI) A machine image, which provides the information required to launch an instance, which is a virtual server in the cloud.
Elastic Block Store Provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud.
Simple Storage Service (S3) Storage for the Internet. It is designed to make web-scale computing easier for developers.
Elastic Compute Cloud (EC2) A web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers.
Elastic Load Balancing (ELB) Distributes incoming application traffic across multiple EC2 instances, in multiple Availability Zones. This increases the fault tolerance of your applications.
Elastic network interface (ENI) A virtual network interface that you can attach to an instance in a VPC.
Elastic IP (EIP) address A static, public IPv4 address that you have allocated in Amazon EC2 or Amazon VPC and then attached to an instance. Elastic IP addresses are associated with your account, not a specific instance. They are elastic because you can easily allocate, attach, detach, and free them as your needs change.
Instance type Amazon EC2 provides a wide selection of instance types optimized to fit different use cases. Instance types comprise varying combinations of CPU, memory, storage, and networking capacity and give you the flexibility to choose the appropriate mix of resources for your applications.
Identity and Access Management (IAM) An AWS identity with permission policies that determine what the identity can and cannot do in AWS. You can use an IAM role to enable applications running on an EC2 instance to securely access your AWS resources.IAM role is required for deploying VPX instances in a high-availability setup.
Internet Gateway Connects a network to the Internet. You can route traffic for IP addresses outside your VPC to the Internet gateway.
Key pair A set of security credentials that you use to prove your identity electronically. A key pair consists of a private key and a public key.
Route tables A set of routing rules that controls the traffic leaving any subnet that is associated with the route table. You can associate multiple subnets with a single route table, but a subnet can be associated with only one route table at a time.
Security groups A named set of allowed inbound network connections for an instance.
Subnets A segment of the IP address range of a VPC that EC2 instances can be attached to. You can create subnets to group instances according to security and operational needs.
Virtual Private Cloud (VPC) A web service for provisioning a logically isolated section of the AWS cloud where you can launch AWS resources in a virtual network that you define.
Auto Scaling A web service to launch or terminate Amazon EC2 instances automatically based on user-defined policies, schedules, and health checks.
CloudFormation A service for writing or changing templates that create and delete related AWS resources together as a unit.

How a Citrix ADC VPX instance on AWS works

The Citrix ADC VPX instance is available as an AMI in AWS marketplace, and it can be launched as an EC2 instance within an AWS VPC. The Citrix ADC VPX AMI instance requires a minimum of 2 virtual CPUs and 2 GB of memory. An EC2 instance launched within an AWS VPC can also provide the multiple interfaces, multiple IP addresses per interface, and public and private IP addresses needed for VPX configuration. Each VPX instance requires at least three IP subnets:

  • A management subnet
  • A client-facing subnet (VIP)
  • A back-end facing subnet (SNIP,MIP, etc.)

Citrix recommends three network interfaces for a standard VPX instance on AWS installation.

AWS currently makes multi-IP functionality available only to instances running within an AWS VPC. A VPX instance in a VPC can be used to load balance servers running in EC2 instances. An Amazon VPC allows you to create and control a virtual networking environment, including your own IP address range, subnets, route tables, and network gateways.

Note: By default, you can create up to 5 VPC instances per AWS region for each AWS account. You can request higher VPC limits by submitting Amazon’s request form http://aws.amazon.com/contact-us/vpc-request.

Figure 1. A Sample Citrix ADC VPX Instance Deployment on AWS Architecture

image

Figure 1 shows a simple topology of an AWS VPC with a Citrix ADC VPX deployment. The AWS VPC has:

  1. A single Internet gateway to route traffic in and out of the VPC.
  2. Network connectivity between the Internet gateway and the Internet.
  3. Three subnets, one each for management, client, and server.
  4. Network connectivity between the Internet gateway and the two subnets (management and client).
  5. A standalone Citrix ADC VPX instance deployed within the VPC. The VPX instance has three ENIs, one attached to each subnet.

Supported instance type, ENI, and IP addresses

For more information about Amazon EC2 instances and  IP addresses supported per NIC per instance type:

For higher bandwidth, Citrix recommends the following instance types:

Instance type Bandwidth Enhanced networking (SR-IOV)
M4.10x large 3 Gbps and 5 Gbps Yes
C4.8x large 3 Gbps and 5 Gbps Yes
Deploy a Citrix ADC VPX instance on AWS