Citrix has developed a custom Terraform provider for automating Citrix BLX deployments and configurations. Using Terraform, you can deploying and configure a Citrix ADC BLX.
To configure a Citrix ADC BLX after it's deployed, the CitrixADC Terraform module can be used. Link
Important note: The provider is not able to read remote state of the deployed BLX.
- Why Terraform for Citrix ADC BLX ?
- Navigating Repository
- Installating Terraform and Citrix BLX Provider
- Get Started on using terraform to deploy Citrix BLX
- Usage Guidelines
Terraform is an open-source infrastructure as code software tool that provides a consistent CLI workflow to manage hundreds of cloud services.Terraform codifies cloud APIs into declarative configuration files. Terraform can be used to deploy and configure ADC BLX. Configuring Citrix ADC BLX through Terraform provides multiple benefits.
- ADC BLX resource file in Terraform is human friendly and easy to understand.
- Abstract away the complexity associated with Citrix ADC BLX deployments.
To run the terraform-citrixadc-provider you need to have the hashicorp terraform executable installed in your system.
You can download it from this page.
- citrixblx folder - Contains the citrixblx resource file and modules leveraged by Terraform.
- examples folder - Contain the examples for users to deploy BLX.
First step is to install Terraform CLI. Refer the https://learn.hashicorp.com/tutorials/terraform/install-cli for installing Terraform CLI.
Terraform provider for Citrix ADC is not available through terrform.registry.io as of now. Hence users have to install the provider manually.
-
Download the citrix blx terraform binary in your local machine where you have terraform installed from the Releases section of the github repo.Untar the files and you can find the binary file terraform-provider-ctitrixblx.
-
Edit .terraformrc for the base directory of plugins:
plugin_cache_dir = "/home/user/.terraform.d/plugins"
- Copy terrafom-provider-citrixadc binary in appropriate location -
$plugin_cache_dir/<platform>/terraform-provider-citrixblx. e.g./home/user/.terraform.d/plugins/linux_amd64/terraform-provider-citrixblx
-
Download the citrix blx terraform binary in your local machine where you have terraform installed from the Releases section of the github repo.Untar the files and you can find the binary file terraform-provider-citrixblx.
-
Create a following directory in your local machine and save the citrix adc terraform binary. e.g. in Ubuntu machine. Note that the directory structure has to be same as below, you can edit the version -0.0.1 to the citrix adc version you downloaded.
mkdir -p /home/user/.terraform.d/plugins/registry.terraform.io/citrix/citrixblx/0.0.1/linux_amd64/
- Copy the terraform-provider-citrixblx to the above created folder as shown below
cp terraform-provider-citrixblx /home/user/.terraform.d/plugins/registry.terraform.io/citrix/citrixblx/0.0.1/linux_amd64/
_In order to familiarize with citrix blx deployment through terraform, lets get started with basic configuration of setting up a dedicated mode BLX in Terraform.
Before we configure, clone the github repository in your local machine as follows:
git clone https://github.com/citrix/terraform-provider-citrixblx/
Step-1 : Now navigate to examples folder as below. Here you can find many ready to use examples for you to get started:
cd terraform-provider-citrixblx/examples/
Lets deploy a simple shared mode Citrix ADC BLX.
cd terraform-provider-citrixblx/examples/simple-blx-shared/
Step-2 : Provider.tf contains the details of the target Citrix ADC.Edit the simple-blx-shared/provider.tf as follows and add details of your target adc.
For terraform version > 13.0 edit the provider.tf as follows
terraform {
required_providers {
citrixblx = {
source = "citrix/citrixblx"
}
}
}
provider "citrixblx" {
}
For terraform version < 13.0, edit the provider.tf as follows
provider "citrixblx" {
}
Step-3 : Resources.tf contains the desired state of the resources that you want to manage through terraform. Here we want to create a shared mode blx. Edit the simple-blx-shared/resources.tf with your configuration values - host ip address, host username, host password, blx password as below.
resource "citrixblx_adc" "blx_1" {
source = "/home/user/blx-rpm.tar.gz"
host = {
ipaddress = "2.2.2.2"
username = "user"
password = "DummyHostPass"
}
config = {
worker_processes = "2"
}
password = "DummyPassword"
}
Step-4 : Once the provider.tf and resources.tf is edited and saved with the desired values in the simple-blx-shared folder, you are good to run terraform and configure ADC.Initialize the terraform by running terraform-init inside the simple-blx-shared folder as follow:
terraform-provider-citrixblx/examples/simple-blx-shared$ terraform init
You should see following output if terraform was able to successfully find citrix blx provider and initialize it -
Initializing the backend...
Initializing provider plugins...
- Reusing previous version of hashicorp/citrixblx from the dependency lock file
- Installing hashicorp/citrixblx v0.0.1...
- Installed hashicorp/citrixblx v0.0.1 (unauthenticated)
Terraform has been successfully initialized!
You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.
If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
Step-5 : We can now do a terraform plan to see the BLX deployment that will be created.
terraform-provider-blx/examples/simple-blx-shared# terraform plan
# citrixblx_adc.blx_1 will be created
+ resource "citrixblx_adc" "blx_1" {
+ config = {
+ "worker_processes" = "2"
}
+ host = {
+ "ipaddress" = "2.2.2.2"
+ "password" = "DummyHostPass"
+ "username" = "user"
}
+ id = (known after apply)
+ password = "DummyPassword"
+ source = "/home/user/blx-rpm.tar.gz"
}
Plan: 1 to add, 0 to change, 0 to destroy.
Step-6 : We can now do a terraform apply followed by a yes to deploy the BLX.
citrixblx_adc.blx_1: Creating...
citrixblx_adc.blx_1: Still creating... [10s elapsed]
citrixblx_adc.blx_1: Still creating... [20s elapsed]
`
`
citrixblx_adc.blx_1: Still creating... [3m30s elapsed]
citrixblx_adc.blx_1: Still creating... [3m40s elapsed]
citrixblx_adc.blx_1: Creation complete after 3m46s
Provider.tf enables Citrix BLX provider
provider "citrixblx" {
}
Resources.tf contains the desired BLX resources which need to be deployed.
All valid options inside the Citrix BLX resource include -
resource "citrixblx_adc" <resource_name> {
source = <path-to-blx-tar.gz>
host = {
ipaddress = <host_ipaddress>
username = <host_username>
password = <host_password>
port = <host_ssh_port>
ssh_hostkey_check = <yes/true when strict hostkey checking must be enabled>
keyfile = <key_file_path>
}
config = {
ipaddress = <ip address for BLX>
interfaces = <space seperated string of interfaces for BLX>
worker_processes = <blx worker process or core mask, eg -{"1" or "-c 0x1"}>
mgmt_ssh_port = <mgmt ssh port, shared mode>
mgmt_http_port = <mgmt http port, shared mode>
mgmt_https_port = <mgmt https port, shared mode>
total_hugepage_mem = <total hugepage memory to allocate for BLX>
host_ipaddress = <host ip address to set if blx_managed_host>
blx_managed_host = <1, when host management needs to be dedicated to blx>
nsdrvd = <number of nsdrvd process to be enabled>
cpu_yield = <yes, when needed to be enabled>
default_gateway = <default gateway for the blx>
}
password = <blx_password to be set, required field>
local_license = [
<array of paths to local license file>
]
cli_cmd = [
<cli_cmd’s to be appended to cli-cmd section of blx.conf>
]
mlx_ofed = <path_to_mlx_ofed_iso, can be zipped or unzipped>
mlx_tools = <path_to_mlx_tools>
}
E.g. For creating a shared mode BLX
citrixblx_adc
resource "citrixblx_adc" "blx_1" {
source = "/home/user/blx-rpm.tar.gz"
host = {
ipaddress = "2.2.2.2"
username = "user"
password = "DummyHostPass"
}
config = {
worker_processes = "2"
}
password = "DummyPassword"
}
resources.tfdescribes the actual NetScaler config objects to be created. The attributes of these resources are either hard coded or looked up from input variables interraform.tfvarsvariables.tfdescribes the input variables to the terraform config. These can have defaultsprovider.tfis used to initialize the citrixblx providerterraform.tfvarshas the variable inputs specified invariables.tf
Modify the terraform.tfvars to suit your own BLX deployment. Use terraform plan and terraform apply to configure the NetScaler.
Modify the set of backend services and use terraform plan and terraform apply to verify the changes
- You have (some) experience with Terraform, the different provisioners and providers that come out of the box, its configuration files, tfstate files, etc.
- You are comfortable with the Go language and its code organization.
- Install
terraformfrom https://www.terraform.io/downloads.html - Check out this code:
git clone https://<> - Build this code using
make build - Binary can be found at
$GOPATH/bin/terraform-provider-citrixblx