I recently purchased a ICX6450-24p. I have NTP set up, and it properly sets the clock not long after the unit is booted. However I noticed that during boot and shortly after boot, the clock is set to 1969. Not a biggie, but just curious if this is normal for this switch? I tested the battery (BR2032), and it looks good (2.83v).
Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)
- Thread starter fohdeesha
- Start date
Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.
I do have another 6450 (non POE) and a unifi switch 16 XB Is it possible to use them to offset this loss in bandwidth from the POE cameras
? or is there some setting in pfsense that can mitigate this?
yeah that poe board is fried, tell the seller he's a dingus
big improvements & features coming to the guide soon
What are the specs of your PFsense box? How is the CPU / Mem usage?
Unifi XG (10gb?) - What VMS/NVR for the cameas? If it is Blue Iris - what are the stream megabits?
Is it 1 vlan for you 1 vlan for cameras? I am happy to help where I can but switching to 10gb was pretty immediate for me. Again my vlans are all set with all cameras on the same camera vlan.
Yeah I figured - bummer - can I safely use it as a non-poe unit? I can make an offer on it vs making him pay for shipping again. Then again I am not sure if a 7250-48p with POE disabled will use more electric than its worth. I want to make sure the rest of the switch isnt going to blow up. can I take the POE part of the board out or swap it?
Any recommendation on network cards?
Was thinking to get these: 0N20KJ DELL BROADCOM 57810 10GB DUAL PORT PCI-E SFP+ NETWORK CARD N20KJ Y40PH | eBay
Last edited:
What for a icx7250, what is the logic level of miniusb/uart? rs232/TTL(1.8V)/TTL(3.3V)/TTL(5V)/other? Thanks!
PoE units don't really use anymore power than their non-PoE counterparts unless you're actively powering PoE devices. You can also just remove the entire PoE daughterboard, it's the one on top
That all sounds good to me. Is the SFP+ port plugged into the 6450? I dont think you need it but can you pop a 10gb sfp+ card into the PFSsense box going to the Unifi?
I have close to 50 cameras on my network all on 1 vlan & am not seeing a slowdown.
I dont use PFsense anymore but it did have good reporting broken out on lan/vlan (wan too) - what activity level is it showing?
Is the 6450 set for auto speed?
show int brief?
to confirm the slowdown is on the Lan vlan?
I have close to 50 cameras on my network all on 1 vlan & am not seeing a slowdown.
I dont use PFsense anymore but it did have good reporting broken out on lan/vlan (wan too) - what activity level is it showing?
Is the 6450 set for auto speed?
show int brief?
to confirm the slowdown is on the Lan vlan?
Anyone else got authentication issues via ssh on ICX6610 switches when key-authentication is enabled?
Debug session says:
When I add
SW version is 8030t, my SSH key is 4096 bits long
I have not setup the pub-key-file on the switch itself, however I wouldn't expect to see weird issues even if it should be set up
Debug session says:
Code:
....
debug1: Offering public key: /home/robin/.ssh/id_rsa.pub RSA SHA256:GKW7yzA1J1qkr1Cr9MhUwAbHbF2NrIPEgZXeOUOz3Us explicit
debug3: send packet: type 50
debug2: we sent a publickey packet, wait for reply
debug3: receive packet: type 60
debug1: no key from blob. pkalg ssh-rsa: invalid format
ssh_dispatch_run_fatal: Connection to 10.10.2.50 port 22: invalid formatip ssh key-authentication no, it works fine...SW version is 8030t, my SSH key is 4096 bits long
I have not setup the pub-key-file on the switch itself, however I wouldn't expect to see weird issues even if it should be set up
the 6 series only supports 2048 length keys, you might be making it barf by offering too thicc of bits even when it doesn't have a pubkey
Is this the part (yellow?) Unplug, remove board? Can I take a daughter board from a 6450 to use in its place or is the issue something beyond the POE daughterboard?
Attachments
That's the one, remove the cables with it too. Problem is almost definitely on the board somewhere, you could swap another one in if you had an exact replacement from the same model switch and same port count of that model. Something from a different model entirely like a 6450 will not work
But it works via password based authentication... If the unit can't handle 4096 bits, password auth shouldn't work (except if Brocade messed up, which would, given my experiences with the switch so far, really surprise me)
On another note:
I just tried to configure the 10GBe Ports for stacking and... failed.
I've googled the error ("1/2/2 must be one of the stacking ports: 1/2/1 1/2/6") and literally the only result is this thread.
That's a bit disappointing... But I can't imagine that these ports do not support stacking.
The manual has an entire section dedicated to them with sentences like
Edit:
Uhh, I THINK I've got it!
Will add more infos later
Last edited:
So apparently it's not possible to ONLY use the 4x10G Port for stacking.
You can either have:
So that's where my issues started.
So what do you need to do? Well, trunk the 40G ports together with the 4x10G ports.
It's as easy as
First command trunks the upper two ports, second command trunks the lower two ports.
If you run
(don't wonder that it's only
You can then use
You will then see something like
Go ahead and trunk the other ports
and there you go:
TL;DR: Ignore the Brötcom docs, they're not complete...
You can either have:
- 4x10G and 40G as data port (no stacking)
- 40G as stacking port and 4x10G as data ports
- 40G and 4x10G as stacking port
Code:
SSH@tbm-switch-leaf-public-1(config-unit-1)#stack-port 1/2/2
Error! 1/2/2 must be one of the stacking ports: 1/2/1 1/2/6.stack secure-setup does NOT use the 4x10G ports by default.So what do you need to do? Well, trunk the 40G ports together with the 4x10G ports.
It's as easy as
Code:
stack-trunk 1/2/1 to 1/2/5
stack-trunk 1/2/6 to 1/2/10If you run
show running-config you should see:
Code:
stack unit 1
module 1 icx6610-48p-poe-port-management-module
module 2 icx6610-qsfp-10-port-160g-module
module 3 icx6610-8-port-10g-dual-mode-module
stack-trunk 1/2/1 to 1/2/2
stack-trunk 1/2/6 to 1/2/7
stack-port 1/2/1 1/2/6to 1/2/2 and to 1/2/7 - It is not unusual that the first port serves as an identifier for the other ones)You can then use
stack secure-setup to set up everything. NOTE: I have NOT tested this in a three device setup (only two devices), so YMMV.You will then see something like
Code:
active
+---+ +---+
=2/6| 1 |2/1=-2/6| 2 |2/1-
| +---+ +---+ |
| |
|------------------------|
*** Warning! detect 2 trunk-to-port links. The stack may not work.
U1 stack-trunk (1/2/1-1/2/2) to U2 stack-port (2/2/6)
U1 stack-trunk (1/2/6-1/2/7) to U2 stack-port (2/2/1)
U# Stack-port1 Stack-port2
1 up (1/2/1-1/2/2) up (1/2/6-1/2/7)
up ports: 1/2/1, 1/2/2, 1/2/3, 1/2/4, 1/2/5
up ports: 1/2/6, 1/2/7, 1/2/8, 1/2/9, 1/2/10
2 up (2/2/1) up (2/2/6)
Code:
(config-unit-2)#stack-trunk 2/2/1 to 2/2/5
(config-unit-2)#stack-trunk 2/2/6 to 2/2/10
Code:
SSH@tbm-switch-leaf-public-1#show stack stack-ports
active standby
+---+ +---+
=2/6| 1 |2/1==2/6| 2 |2/1=
| +---+ +---+ |
| |
|------------------------|
U# Stack-port1 Stack-port2
1 up (1/2/1-1/2/2) up (1/2/6-1/2/7)
up ports: 1/2/1, 1/2/2, 1/2/3, 1/2/4, 1/2/5
up ports: 1/2/6, 1/2/7, 1/2/8, 1/2/9, 1/2/10
2 up (2/2/1-2/2/2) up (2/2/6-2/2/7)
up ports: 2/2/1, 2/2/2, 2/2/3, 2/2/4, 2/2/5
up ports: 2/2/6, 2/2/7, 2/2/8, 2/2/9, 2/2/10TL;DR: Ignore the Brötcom docs, they're not complete...
The guide for the icx7250 provides some old firmware, is there any reason not to use the latest version on this site?
RUCKUS ICX 7250 Switch Hardware Installation Guide | Technical Documents | Ruckus Wireless Support
RUCKUS ICX 7250 Switch Hardware Installation Guide | Technical Documents | Ruckus Wireless Support
Not sure, but I don't think you need two PSU's in any of the 6610 models; they're for redundancy and don't split the load. If I'm wrong about this, someone please correct me.