blueSheep[dev];

Deploy Citrix ADC in Azure

A small how to post on how to easily deploy Citrix ADC in Azure

Written on 2023-04-26 by Remco Kersten in networking

# Citrix ADC
Like0

Steps for deploying Citrix ADC

Citrix ADC (formerly Netscaler) is also available as a virtual appliance in addition to physical hardware. As a result, companies can make Citirx ADC available virtually and are no longer bound to purchase special equipment. ADC has recently also been available in the Azure marketplace, making it extremely easy to deploy Citrix ADC (aka. Netscaler) in your Azure infrastructure.

In the step-by-step plan below, I give a demonstration in which Citrix ADC is deployed on Azure for the concept below.

Plan for Citrix ADC deployment with 3 servers

Step 1: Create Citrix ADC VM

Search the Azure marketplace for Citrix ADC 13.1 and choose a variant of your choice and deploy this VM. (VPX Express 20 Mbps is free to use at the time of writing).

Citrix ADC in Azure marketplace

  • In this example, I choose Password as Authentication type instead of SSH public key so that I no longer have to configure a separate user after deployment. ⚠️ Obviously this is not best practice for production environments
  • Set public inbound ports to None so that your ADC is not accessible to everyone
  • Leave the rest of the options, or adjust them as desired.

After deployment, create an inbound rule under the Network security group that allows traffic from your IP address. Azure network security rule

Step 2: Configure network

The ADC needs 3 IP addresses:

  • 1 address for management interface
  • 1 address for the internal network
  • 1 address for public access

Add second subnet

Go to the virtual network that the ADC is part of, and create an extra subnet for the internal network. In this example I am creating the subnet 10.0.10.0/24 Create subnet in Azure

Add second network interface

The ADC currently has 1 interface for public access, so we have to create another interface for the internal network.

  1. Go to Network interfaces and click Create Add a NIC in Azure

  2. Create an interface in the internal subnet. Give the interface a static IP address Add a NIC in Azure

  3. Assign the network card to the ADC VM. ⚠️ The VM must be turned off Attach a NIC in Azure

Add IP configuration for public access

For the public network card there is currently 1 IP configuration which is used for management interface. That’s why we add an extra IP configuration for public access.

  1. Open the network interface of the public network Azure NIC

  2. Under IP configurations add a new IP configuration with both a private and public static IP address ⚠️ The public IP address must be SKU standard Add a NSG rule in Azure

Configure IP settings on ADC

  1. Reboot the VM and login to Citrix ADC by navigating to https:///
  2. Log in with the data you created when creating the VM
  3. Under Configuration, go to System -> Network -> Interfaces You should see the 2 network cards that we just created here.
  4. Go to System -> Network -> IPs and add the newly created IP address for the internal network. IP Type is Subnet IP
  5. Add the private ip address for the public network card in the same way. IP Type here is Virtual IP IP address configuration on ADC

Conclusion

In this post I showed how to deploy Citrix ADC (aka. Netscaler) on Azure. It is now possible to offer your services hosted on Azure via Citrix ADC. Rackspace has a nice blog post showing how to set up load balancing.