Wiping your data before sending the ADC appliance to Citrix

The configuration wipe scripts remove all customer proprietary information from a Citrix ADC appliance before Return Merchandise Authorization (RMA) or return from evaluation. The scripts are designed to give the customer a high level of confidence that all their information has been removed.

Caution: Running these scripts is dangerous. If something goes wrong during execution, the appliance might be rendered unbootable and Citrix might have to reinstall the software image. The config wipe scripts remove everything on the box, including licenses, configuration, images, and scripts. Run these scripts only after understanding the consequences.

Supported Platforms

The script is supported on all Citrix ADC MPX appliances. The script is not supported on Citrix ADC SDX appliances. Delete the VPX instances before returning the SDX appliance.

Required script files

The following script files must be present in the /flash/.recovery directory. They are required for successfully wiping out the data.

  • rc.conf_wipe_subr
  • rc.flash_wipe_recover
  • rc.local_disk_wipe_2
  • rc.local_flash_wipe_1
  • rc.main_disk_wipe
  • rc.main_flash_wipe
  • rc.system_wipe_and_reset

Commands to wipe the config

At the command line, type:

> shell
# cd /flash/.recovery
# sh rc.system_wipe_and_reset

Two optional parameters are available to zero the flash and the disk one or more times.

sh rc.system_wipe_and_reset [num_flash_loops [num_disk_loops]]

Parameters:

  • num_flash_loops - Number of times to loop through the flash, zeroing all sectors. The default is 0. Acceptable values are from 0 through 16.

  • num_disk_loops - Number of times to loop through the hard drive, zeroing all sectors. The default is 0. Acceptable values are from 0 through 16.

Note: You can specify num_disk_loops only after you provide num_flash_loops. To zero the disk without zeroing the flash, set the flash parameter to 0.

Examples

The following command is used to zero the flash once and zero the hard drive twice.

sh rc.system_wipe_and_reset 1 2

The following command is used to zero only the hard drive once.

sh rc.system_wipe_and_reset 0 1

Use any of the following commands to zero the flash four times.

sh rc.system_wipe_and_reset 4 0

OR

sh rc.system_wipe_and_reset 4

Script running time

The appliance might reboot one or more times. Time taken for some sample configuration is as follows:

  • Without parameters, the script completes in five minutes. That is, the disk is only reformatted and not zeroed. Zeroing adds extra security so that the data cannot be recovered.
  • When you zero the flash:
    • On appliances with 256 MB flash, slightly more than one minute is added per pass.
    • On MPX appliances with 4 GB flash, approximately 17 minutes are added per pass.
  • When you zero the disk:
    • On appliances with 80 GB hard drives, approximately 52 minutes are added per pass.
    • On MPX appliances with 250 GB hard drives, approximately 163 minutes are added per pass.

Appliances with one SSD

On single SSD systems, there is only one physical storage device. Therefore, you cannot reformat and optionally zero the entire device.

Instead of reformatting the entire flash, only the flash partition is reformatted. Instead of zeroing the entire flash, only the flash partition is zeroed.

Since there is a hard drive partition instead of a physical hard drive, reformatting and optionally zeroing is limited to the hard drive partition.