Glad you got the temps back to normal. I do hope you find a way to keep the closet cooler - perhaps an exhaust fan fitted in the ceiling to the attic and a small grill on the bottom of the door for cool air ingress? Your switch and other devices in your closet may not work better because of it, but they may last longer and avoid further cooling noise.
Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)
- Thread starter fohdeesha
- Start date
2 questions in this post.
1) I could use some help with QoS, due to limited knowledge on the subject thus far.
I have VoIP and security camera traffic that I want to ensure gets high priority on the network. Not sure if SAN/NAS traffic should get afforded any special QoS, so comments on that welcome.
Anyway, how do I go about setting and enforcing QoS for VoIP and streaming camera traffic on my network? Each are seperated into their own VLAN and subnet:
VoIP - VLAN 2 - 10.1.2.0/24
Cams - VLAN 3 - 10.1.3.0/24
SAN - VLAN 4 - 10.1.4.0/24
I'm having trouble understanding where, how, and what to apply to correctly apply QoS shaping.
2) Is there any benefit to using the Switch image over the Router image on an ICX6450 doing only switch duty?
1) I could use some help with QoS, due to limited knowledge on the subject thus far.
I have VoIP and security camera traffic that I want to ensure gets high priority on the network. Not sure if SAN/NAS traffic should get afforded any special QoS, so comments on that welcome.
Anyway, how do I go about setting and enforcing QoS for VoIP and streaming camera traffic on my network? Each are seperated into their own VLAN and subnet:
VoIP - VLAN 2 - 10.1.2.0/24
Cams - VLAN 3 - 10.1.3.0/24
SAN - VLAN 4 - 10.1.4.0/24
I'm having trouble understanding where, how, and what to apply to correctly apply QoS shaping.
2) Is there any benefit to using the Switch image over the Router image on an ICX6450 doing only switch duty?
Last edited:
How's this for a start on QoS settings?
I have VoIP and streaming security cameras I want to give priority across the network. Is this looking correct so far?
This is on my ICX6450 setup as an access switch.
Now do I add this ACL to each interface?
On my ICX6610, which also has edge devices on it, do I add these rules to all ports as well, or add them to the ACLs already in use on the VEs?
On both switches, the trust dscp option should be set on the uplink ports only, correct?
Also going to mention that I switched my ICX6450 to the ICX64S switching-only firmware. It only required some minor configuration changes, but works as expected. I still don't think there's any benefits to doing so, except slightly less complicated configuration.
I have VoIP and streaming security cameras I want to give priority across the network. Is this looking correct so far?
This is on my ICX6450 setup as an access switch.
Code:
ip access-list extended markqos
permit tcp 10.1.3.0 0.0.0.255 eq 9000 any dscp-marking 32
permit tcp any 10.1.3.0 0.0.0.255 eq 9000 dscp-marking 32
permit tcp any any eq 554 dscp-marking 32
permit tcp any eq 554 any dscp-marking 32
permit udp any any range 6970 6979 dscp-marking 32
permit udp any range 6970 6979 any dscp-marking 32
permit tcp any any eq 5060 dscp-marking 24
permit tcp any eq 5060 any dscp-marking 24
permit udp any eq 5060 any dscp-marking 24
permit udp any any eq 5060 dscp-marking 24
permit udp 10.1.2.0 0.0.0.255 range 10000 20000 any dscp-marking 46
permit udp any 10.1.2.0 0.0.0.255 range 10000 20000 dscp-marking 46
permit ip any anyOn my ICX6610, which also has edge devices on it, do I add these rules to all ports as well, or add them to the ACLs already in use on the VEs?
On both switches, the trust dscp option should be set on the uplink ports only, correct?
Also going to mention that I switched my ICX6450 to the ICX64S switching-only firmware. It only required some minor configuration changes, but works as expected. I still don't think there's any benefits to doing so, except slightly less complicated configuration.
Just got a 7150-C12P from ebay.
Should I be concerned about the bad blocks? I'm guessing it's fine but it'd be nice to get a second opinion while I can still return it.
Everything seems to be working normally.
Code:
ICX7150-Boot>nand bad
Device 0 bad blocks:
05a00000
05b00000
ICX7150-Boot>nand info
Device 0: nand0, sector size 1024 KiB, Micron NAND 2GiB
Page size 4096 b
OOB size 224 b
Erase size 1048576 b
subpagesize 4096 b
options 0x 10200
bbt options 0x 0Everything seems to be working normally.
My ICX 6450-24P draws 36w at idle, nothing plugged in. Datasheet says it should only pull 21w idle (first post from fohdeesha mentions 25w). That is almost 50% higher! Is this considered defective or are there that much variance between same models?
The main reason I got the 6450 is for the low power consumption because I have to sit next to this thing so I wanted to reduce heat and noise as much as possible. At this rate, I might as well add another 14w and get a 7250-48P to double all the ethernet and fiber ports.
The main reason I got the 6450 is for the low power consumption because I have to sit next to this thing so I wanted to reduce heat and noise as much as possible. At this rate, I might as well add another 14w and get a 7250-48P to double all the ethernet and fiber ports.
Kill-A-Watts have been showing in the past to not always be very accurate with lower power draw devices on them. I can dig mine out and test my ICX 6450-24p i just got the other day and see.
Question for the ICX6450-24p. I am wanting to use the Layer 3 features to offload VLAN routing and such from my PFSense to the switch. Do I need the " ICX6450-PREM-LIC" license to do this, or can it do it already?
Question for the ICX6450-24p. I am wanting to use the Layer 3 features to offload VLAN routing and such from my PFSense to the switch. Do I need the " ICX6450-PREM-LIC" license to do this, or can it do it already?
Bummer.
I remember playing the silicon lottery back in my CPU/GPU overclocking days, where some chips can overlock better or consume less power than another one of the same exact model. This now feels the same.
Yes that would be helpful to get another data point.
don't need the license for static routing but theyre free anyway just send me a PM. you will need aa license for half of the 10gb ports
Question
#show flash
Stack unit 1:
Compressed Pri Code size = 9871112, Version:08.0.30uT313 (ICX64R08030u.bin)
Compressed Sec Code size = 9871112, Version:08.0.30uT313 (ICX64R08030u.bin)
Compressed Boot-Monitor Image size = 786944, Version:10.1.05T310
I got the 10Gbps active (thank you very much) and fully patched as well, and have the R installed
#show flash
Stack unit 1:
Compressed Pri Code size = 9871112, Version:08.0.30uT313 (ICX64R08030u.bin)
Compressed Sec Code size = 9871112, Version:08.0.30uT313 (ICX64R08030u.bin)
Compressed Boot-Monitor Image size = 786944, Version:10.1.05T310
PoE version draws more than the non PoE. I have the 24port non PoE and it idles around 20~25 watt without anything connected. You can also replace the fan with something more quiet too. I have been running mine for almost three years now with a super silent fan, no stability problems. I am using all of the 10GbE ports, where 2 of them run NVMe-oF traffic
Or can get thin aluminum sheet and cut to size. Cuts with sturdy scissors, and easy to punch holes in it too.
But then my OCD will get the best of me! Thanks for the suggestions, guys. I'll end up with one of those two methods and just live with it since the backs can't be seen.
I can confirm mine does it too. And I've tested with a BW-SHP6 and with a Eastron SDM120. Yea, ok, not lab grade by any means, but I think it's a little bit better than a random kill-a-watt. Oh, and it does so with a very poor power factor (0.55-0.6ish, can't remember at the moment, but I've written about it in the past).
Bummer, but oh-well.
Question for the experts, as this is my first layer 3 switch I am really digging into. I my ICX 6450-24p flashed with the R firmware. Now, do I have to use VLANS in a layer 3 sense? using virtual interfaces and such as per the docs I have found.
I am trying to set up my VLANS, using PFSense as my router and have the VLANS set up there. I am going from PFSense ---> 6450 via a single link. On the ICX6450, I have "tagged" the VLAN's I have in pfsense on the port 1/2/1 (10Gbps Fiber) with the default vlan 1 untagged.
However when I set say port 1/1/1 to VLAN 2 (wireless and tagged) as it goes to my Asus AP - no traffic appears to pass through at all and clioent can not get an DHCP address from PFSense. My last switch was an HP procurve and this set up worked.
Or do I need a DHCP / IP Helper set up on the ICX6450?
I am trying to set up my VLANS, using PFSense as my router and have the VLANS set up there. I am going from PFSense ---> 6450 via a single link. On the ICX6450, I have "tagged" the VLAN's I have in pfsense on the port 1/2/1 (10Gbps Fiber) with the default vlan 1 untagged.
However when I set say port 1/1/1 to VLAN 2 (wireless and tagged) as it goes to my Asus AP - no traffic appears to pass through at all and clioent can not get an DHCP address from PFSense. My last switch was an HP procurve and this set up worked.
Or do I need a DHCP / IP Helper set up on the ICX6450?