Search results

If only a single 1Gbit link is used between a switch and pfSense, there can be significant performance ramifications since any VLAN boundaries being crossed must go to the router and back. In a home network, this may not be an issue. If you have alot of file transfers across VLANs on multiple...

I've come to a crossroads recently in my home network setup and looking for some input. In the past, I ran pfSense and all IPv6 was disabled. Traffic was forced through a VPN service, such as NordVPN, with a few exception that restricted the VPN service. At present, my network is fully open...

"servethehome step mom" Hmmmmmmmmmm.

I suspect the issue is and never was with the switch but either a bad connection/cable somewhere or a routing table on an edge device doing funky things. Be sure to check for packet errors on your end device(s). This is what really matters. Certainly not. Traffic sent to the switch...

There might also be an issue with NAT on your firewall. I know this is an issue with pfSense.OPNSense where you have to manually adjust NAT settings.

Sorry I missed that you had the running-config linked already. Th pasted ping shows the packet delays when pinging the switch. In your latest post, you say it happens to any traffic going through the switch (i.e. edge device to edge device). If the latter is true, than there may be an issue...

@m4r1k Paste the running-config and the log and are you pinging from a device directly connected to the switch? Is the switch being used as the primary gateway of the device doing the pinging?

No, 8.0.30u is the latest and final firmware for ICX6xxx line. EDIT: fixed version typo :)

@TZann The switch only handles routing that has traffic sent to it that needs to be routed (not on same L2 network). This only happens when the appropriate switch VE is used as a gateway (somewhere along the line) as you discovered. Adding the static router to your internet router may or may...

@TZann I suspect the devices on your 192.168.1.0/24 subnet are unaware of the routes on your switch. There are two ways to rectify this: Use the switch's ve as the gateway on each device (192.168.1.80) Add a static route on the gateway/router currently being used by those devices Example...

You can change the default VLAN, but it's likely a better idea to just use dual-mode 85 instead of simply dual-mode on the appropriate port(s).

@Nikotine , Depends on how you hav the WRT router configured. If it's set to tag VLAN traffic also, then keep it tagged with no dual-mode. I suspect it is not VLAN aware, however. This is fine. You can either tag it on the switch and then use dual-mode on that port, but you'd be better off...

Passing through the NIC to the VM will offer better performance depending on your CPU performance, but on my aging R710s (10 years old) I can achieve over 1Gbps throughput through pfSense (virtio driver) with OpenVSwitch. The benefit of this option is I can live migrate my pfSense VM from one...

I'm unwaveringly confident there are tens of thousands of JunOS switches connected to the internet in all sorts of fashions, including as edge switches/routers. Don't sweat it. Regarding your 1a..... If you have a dynamic IP, don't give the switch port an IP address. Leave the VLAN as L2...

What's the ambient temp of that room? If the fans are ramping up to level 2, it's probably too hot for average use case. I have two ICX6610s in a stack. One runs 10C cooler than the other both MACs and the CPU. No idea why the difference despite same load/PoE/devices plugged in.

@TZann , 1. It can be shorted some by removing the switch rules at the top as these would be covered in the catchall deny ip host 192.168.1.140 192.168.0.0 0.0.255.255 log. 2. I'm not certain, but this is likely because you're still on the same L2 network (same VLAN). The ACLs are only applied...

Bandaids on top of bandaids will make a broken network a complicated, broken network. You asked for others' guidance in resolving the experienced network issues. Very intelligent people gave you good information to get you moving in the right direction. If your boss doesn't want to accept the...

Hmmm, I too just loked at my ICX latency in LibreNMS and see the same wild latency spikes up to about 130-160ms. I haven't had any connectivity issues as a result, though, so it's moot to me.

Long story short.... You MUST either: A) get wires to the IP cams if they can be wired or B) Replace the cameras with models that can be wired, and then wire them. WiFi is a whole different beast than wired networking. With wired networks, you may have a bottleneck, but you can just add more...

You have 7 APs in the 2.4GHz band inside 6,000 square feet in a, likely, mostly open area? Yeah, that's a problem. Turning the signal power up will likely make reception worse, not better. RF isn't just "pump in more power to increase signal strength." RF bounces and intereres. Make sure...