This is a guest post by Pushkar Patil. He is a Principal Product Manager, at Citrix Systems, Inc.
Citrix is thrilled to have recently achieved Red Hat OpenShift Operator Certification (Press Release). This new integration simplifies the deployment and control of the Citrix Application Delivery Controller (ADC) to a few clicks through an easy-to-use Operator.
Before we dive into how you can use Citrix Operators to speed up implementation and control in OpenShift environments, let me cover the benefits of using the Citrix Cloud Native Stack and how it solves the challenges of integrating ingress in Kubernetes.
Benefits of Citrix Cloud Native Stack
A purpose built software stack addressing the needs of various stakeholders like Developers, DevOps, DevSecOPs, SREs and Cluster Admin. The picture below shows the components of the stacks.
Citrix ADC is a feature-rich, application delivery controller that enhances the delivery and security of your microservices applications. Some of the key benefits include:
Production Grade Ingress
Citrix ADC is proven to work at scale, providing features like advanced load balancing, TLS termination, L3-L7 protocol optimizations, and redundancy solutions to the internet’s largest web properties and thousands of enterprises.
Flexible
Citrix ADC support architecture flexibility – Citrix has a complete array of ADC form factors for every environment (physical, virtual, containerized, bare metal and cloud) for inside and outside your cluster.
Agile
Better Developer experience – Citrix ADC uses CRDs to deliver features like Content Rewrite/Responder and now uses operators to improve lifecycle management of Citrix Ingress Controller and Citrix ADC CPX
Monitoring
Citrix Cloud Native Stack readily integrates with open source tools like Prometheus, Grafana, Kibana and many more.
Deep visibility and Troubleshooting
Citrix ADM with Service Graphs provides actionable insight into the health and performance of applications and offers proactive troubleshooting for any issues.
Automated
Citrix ADC provides a REST API (NITRO) which integrates with an automation framework, e.g. Ansible, Puppet, Chef etc. This allows application development and DevOps teams to enable allocation of new ADC services, on-demand as part of their application deployment workflow. The teams can develop application templates for advanced ADC functionality with simplified configuration specific to an individual application.
Elastic
Pooled Capacity provides the ability to share ADC capacity across all Citrix ADC form factors across a datacenter and/or cloud, to ease migration of workloads
Challenges running Ingress in OpenShift:
Kubernetes as an application development and deployment platform is excellent, but getting requests into and out of the cluster does present challenges. Shortcomings include:
Migrating legacy applications to OpenShift
Previously, applications were written to use the TCP/UDP networking protocols. Kubernetes ingress objects don’t support TCP, TCP-SSL or UDP
Failover handling
Because the ingress is the access point for traffic to the cluster, it should continue to serve customers without any downtime if a disaster results in the cluster being unavailable.
Consistent ingress on premises and in the cloud
Microservices can be deployed on-prem and on public cloud and having inconsistent ingress mechanisms across locations adds complexity to operations.
External access from/to outside OpenShift cluster
The ability to seamlessly integrate into existing networking fabrics without additional hops or network re-architecture increases efficiency
Security configuration
Ability to support security with SSL, mTLS is of great significance when it comes to Ingress solutions.
Rolling upgrades
To upgrade without disruption is vital for production environments
How Citrix ADC makes OpenShift ingress easier to implement
Citrix Operators are a secret sauce which enable automation and lifecycle management of Citrix ADC and Citrix Ingress Solution for OpenShift clusters. It wraps the logic for deploying and operating a Citrix ADC operations using Kubernetes construct. More specifically, Citrix Operators directly address the challenges of ingress within Kubernetes.
Citrix Operators enable:
- Deployment of the Citrix ADC and Ingress controller quickly and easily, for serving micro-services applications, including support for TCP/UDP protocols along with HTTP/HTTPS.
- Citrix ADC to scale elastically and handle fail-over events without disruption.
- Deployment of the Citrix Cloud Native Stack on any OpenShift Platform (OpenShift products) in any environment to bring a consistent approach to ingress.
- Automation of security configuration with certificate and key management using Let’s Encrypt, or any other cert and key management application.
- Deployment in production OpenShift environments because it is tested and supported through Red Hat and Citrix.
- Citrix ADC and Ingress Controller to do software update automatically without disruption to the traffic.
How do I use the Citrix operators?
Here we go through steps to use OpenShift Citrix Ingress Operator to configure Citrix ADC VPX in virtual machine form factor and resides outside the cluster.
The rest of this blog describes the features of Citrix Operators that can be used to deploy and operate Citrix ADC in cloud-native environments.
Citrix Operator installation for Red Hat OpenShift overview:
There are 4 common ingress deployment models which customers commonly use with the Citrix Stack:
Two-Tier ingress - A CPX is deployed in a cluster behind the Citrix appliance to act as a DevOps friendly abstraction layer. This deployment needs CIC and CPX operator.
Unified Ingress – The Citrix appliance is outside the cluster serving micro-services. This deployment would just need CIC operator.
Service-Mesh Lite - Provision a CPX instance(s) through which all microservices will communicate and one can have granular traffic management between your apps. This deployment needs both CIC and CPX operator.
Service Mesh – Citrix ADC can be injected as sidecar proxy to your applications and as a gateway to service mesh cluster. This is not currently covered with Operators. We will be creating an operator in the future for this architecture.
CIC Operator | CPX Operator | |
Single Tier | Yes | No |
Dual Tier | Yes | Yes |
ServiceMesh lite | Yes | Yes |
ServiceMesh | No | No |
To learn more about the pros and cons of these deployment choice watch this CNCF webinar https://www.youtube.com/watch?v=OhWYoYAHukA
Here are the steps for using Unified Ingress deployment. There is a video that cover 2-tier ingress at the end of this blogs.
Steps
Prerequisites
- Access to the OpenShift Container Platform web console.
Procedure
- Log in to the OpenShift Container Platform web console.
- Navigate to Catalog → OperatorHub.
- Type Citrix into the filter box to locate the Citrix Operator.
- Click the Citrix Operator to display information about the Operator.
- Click Install.
- On the Create Operator Subscription page, select All namespaces on the cluster (default). This installs the Operator in the default openshift-operators project and makes the Operator available to all projects in the cluster.
- Select the alpha Update Channel.
- Select the Automatic Approval Strategy.
- Click Subscribe.
- The Subscription Overview page displays the Citrix Operator’s installation progress.
Once install is complete
Go to a project where you want to host CIC
- Navigate to Installed Operators
- Click on installed Citrix Ingress Controller
- In the Overview tab -> Create New
- Edit nsIP field to point to Citrix ADC and update the license field to “yes”
- Click create
- Navigate to Workload -> Deployment and find the deployment of CIC
- Verify the CIC pod is running and is connects to Citrix ADC upstream
Exposing Application:
- Create service of application: Navigate to Networking > Services > Create Service
- Create ingress for apache application: Navigate to Networking > Ingress > Create Ingress
- Update VIP of Citrix ADC in the ingress configuration and apply
Get started by viewing this Technical Video to deploy 2-tier architecture using Operators: https://youtu.be/TqSJ6z7wIw0
저자 소개
유사한 검색 결과
채널별 검색
오토메이션
기술, 팀, 인프라를 위한 IT 자동화 최신 동향
인공지능
고객이 어디서나 AI 워크로드를 실행할 수 있도록 지원하는 플랫폼 업데이트
오픈 하이브리드 클라우드
하이브리드 클라우드로 더욱 유연한 미래를 구축하는 방법을 알아보세요
보안
환경과 기술 전반에 걸쳐 리스크를 감소하는 방법에 대한 최신 정보
엣지 컴퓨팅
엣지에서의 운영을 단순화하는 플랫폼 업데이트
인프라
세계적으로 인정받은 기업용 Linux 플랫폼에 대한 최신 정보
애플리케이션
복잡한 애플리케이션에 대한 솔루션 더 보기
오리지널 쇼
엔터프라이즈 기술 분야의 제작자와 리더가 전하는 흥미로운 스토리
제품
- Red Hat Enterprise Linux
- Red Hat OpenShift Enterprise
- Red Hat Ansible Automation Platform
- 클라우드 서비스
- 모든 제품 보기
툴
체험, 구매 & 영업
커뮤니케이션
Red Hat 소개
Red Hat은 Linux, 클라우드, 컨테이너, 쿠버네티스 등을 포함한 글로벌 엔터프라이즈 오픈소스 솔루션 공급업체입니다. Red Hat은 코어 데이터센터에서 네트워크 엣지에 이르기까지 다양한 플랫폼과 환경에서 기업의 업무 편의성을 높여 주는 강화된 기능의 솔루션을 제공합니다.