Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)

[Wolfcastle]

Since the switch is in your office, if you’ve got the vertical space for it, I would highly recommend adding a large fan above the asic. These switches aren’t hot because they put out a ton of heat, they’re hot because they’re 1RU and they’re supposed to go in a datacenter where noise doesn’t matter.

And now for a second question as I get further along in the process here with my ICX 7250-24. Is the temp reported in show chassis accurate? This seems way hotter than it should be with nothing connected and no PoE:

The stack unit 1 chassis info:

Power supply 1 (AC - Regular) present, status ok
Power supply 2 not present

Fan ok, speed (auto): 1<->[[2]]

Fan controlled temperature: 86.8 deg-C

Fan speed switching temperature thresholds:
                Speed 1: NM<----->98       deg-C
                Speed 2:       67<----->105 deg-C (shutdown)

Fan 1 Air Flow Direction:  Front to Back
Slot 1 Current Temperature: 87.4 deg-C (Sensor 1)
Slot 2 Current Temperature: NA
        Warning level.......: 100.0 deg-C
        Shutdown level......: 105.0 deg-C

It's worth noting that I did swap out the stock fan with a Sunon 40mm x 20mm KDE1204PKVX (8200rpm, 10.2 cfm). The stock fan had a fairly annoying coil whine to it and this thing sits fairly close to my desk. I assumed it wouldn't be that big of a hit to thermals on a 24 port switch without PoE. Thoughts?

I'm going to open it up and look at cleaning / reapplying thermal paste (assuming that's a thing you can do).

 

[WampaCow]

Since the switch is in your office, if you’ve got the vertical space for it, I would highly recommend adding a large fan above the asic. These switches aren’t hot because they put out a ton of heat, they’re hot because they’re 1RU and they’re supposed to go in a datacenter where noise doesn’t matter.

I'm going to test temps again today with the stock fan to see if that makes a big difference. As far as a fan on the ASIC itself, I had seen someone suggest this: https://www.mouser.com/ProductDetail/Sunon/MF60101V3-1000U-A99?qs=EU6FO9ffTwekSIQ43CVQVg==

I'm guessing you'd point it up, but given the space constraints, I'm wondering how much of a difference this would make. I assume I could run it off a y-splitter on the one fan header?

You mentioned vertical space--I guess that would mean running it without the cover? I'd definitely prefer to keep it in the enclosure if possible, but obviously that introduces cooling challenges. Or were you thinking just on the exterior? The bottom gets way hotter than the top, so maybe propping it up off the metal shelf it's sitting on or putting some airflow underneath it might help (update: propping it up didn't make any difference).

I know these things run hot, but it seems like idling at 85-90 is too hot and could cause issues.

Edit: I think the best option is to add a fan to the ASIC along with the quieter exhaust fan. I've seen folks recommend the Sunon MF60101V1-1000U-G99, but I can't find it in stock anywhere... Any other good 60x10mm fans you guys would recommend? I assume I need the 3-wire here and a y-splitter to run both this and the exhaust off the one fan header?

 

[BHHOWARD]

Hello Everyone,
I have the ICX 7250-48p switch and I am looking for a 4 post 1U rail kit that will work. The ruckus part number is XBR-R000295. Has anyone found a reasonably priced alternatives to that kit other than a shelf? The cost of the ruckus part is more than I paid for the switch. Thank you for your help.

Did anyone find a lower-cost 4-post option other than a shelf?

thanks

 

[nickf1227]

Seeing as how they mount just fine in a 2 post rack, I'm not sure why you would need anything else other than some cage nuts and screws or rackstuds?

 

[BHHOWARD]

Seeing as how they mount just fine in a 2 post rack, I'm not sure why you would need anything else other than some cage nuts and screws or rackstuds?

I am concerned with the switch sagging.

 

[Wolfcastle]

I am concerned with the switch sagging.

I wouldn’t be too concerned about it, these rack nuts are designed to hold way more than the weight of that switch.

 

[Wolfcastle]

I'm going to test temps again today with the stock fan to see if that makes a big difference. As far as a fan on the ASIC itself, I had seen someone suggest this: https://www.mouser.com/ProductDetail/Sunon/MF60101V3-1000U-A99?qs=EU6FO9ffTwekSIQ43CVQVg==

I'm guessing you'd point it up, but given the space constraints, I'm wondering how much of a difference this would make. I assume I could run it off a y-splitter on the one fan header?

You mentioned vertical space--I guess that would mean running it without the cover? I'd definitely prefer to keep it in the enclosure if possible, but obviously that introduces cooling challenges. Or were you thinking just on the exterior? The bottom gets way hotter than the top, so maybe propping it up off the metal shelf it's sitting on or putting some airflow underneath it might help (update: propping it up didn't make any difference).

I know these things run hot, but it seems like idling at 85-90 is too hot and could cause issues.

Edit: I think the best option is to add a fan to the ASIC along with the quieter exhaust fan. I've seen folks recommend the Sunon MF60101V1-1000U-G99, but I can't find it in stock anywhere... Any other good 60x10mm fans you guys would recommend? I assume I need the 3-wire here and a y-splitter to run both this and the exhaust off the one fan header?

See the ICX 6610 fan mod thread, basically you scribe and cut an acrylic sheet to size and mount a fan above the asic and/or CPU. I made the fan push air down onto the asic on my 6610 but I don’t think it hugely matters whether you’re pushing or pulling air if you’re not in a datacenter. The only catch to this is that the switch is now 2RU instead of 1RU which is probably not an issue for most homelabs.

 

[tubs-ffm]

And now for a second question as I get further along in the process here with my ICX 7250-24. Is the temp reported in show chassis accurate? This seems way hotter than it should be with nothing connected and no PoE:

You could go with a Sunon MF60101V3-1000U-A99 on top of the cooling rips of the CPU.

The stock fan had a fairly annoying coil whine to it and this thing sits fairly close to my desk. I assumed it wouldn't be that big of a hit to thermals on a 24 port switch without PoE. Thoughts?

I gave up on tuning my ICX 7250-24P after the power supply died. I believe it was due to heat. Some guys here have similar tuned systems running over years without issue.

I switched to an ICX 7150-24P. I only get 4 SPF+ ports but I can run this device in fan less mode at zero noise as long the PoE power is below a certain limit (sorry forgot the number).

 

[WampaCow]

You could go with a Sunon MF60101V3-1000U-A99 on top of the cooling rips of the CPU.



I gave up on tuning my ICX 7250-24P after the power supply died. I believe it was due to heat. Some guys here have similar tuned systems running over years without issue.

I switched to an ICX 7150-24P. I only get 4 SPF+ ports but I can run this device in fan less mode at zero noise as long the PoE power is below a certain limit (sorry forgot the number).

Thanks tubs-ffm. I actually just placed an order for that exact fan yesterday. Thoughts on pointing it down vs up? I was leaning towards up, but can test it pretty easily.

Right now, I actually have a 40mm fan sitting on the ASIC heatsink with the case open and it stays below 65. Hopefully the 60mm will help with the case closed, otherwise I might consider moving it to a closet with the stock exhaust--annoying as I'd have to buy a few other cables for it, but it's a possibility. I also toyed with the idea of an intake fan on the side vent. With these lower powered fans, seems like it'd be okay to run 3 off the one header. I guess I could also just leave the case open, although not excited about that plan.

 

[WampaCow]

See the ICX 6610 fan mod thread, basically you scribe and cut an acrylic sheet to size and mount a fan above the asic and/or CPU. I made the fan push air down onto the asic on my 6610 but I don’t think it hugely matters whether you’re pushing or pulling air if you’re not in a datacenter. The only catch to this is that the switch is now 2RU instead of 1RU which is probably not an issue for most homelabs.

Woa, just checked this out. This is pretty wild. So basically replace the case cover with a piece of acrylic and you cut a hole in the acrylic to plop a larger fan on top. Pretty cool idea--I might consider it if I can't get things where I want within the existing case.

 

[sth]

Has anyone with a 7150-c12p had issues with it occasionally stopping switching? I've had a new one for about 4 months now and approximately every two months it turns into a brick until its rebooted.

 

[BHHOWARD]

I wouldn’t be too concerned about it, these rack nuts are designed to hold way more than the weight of that switch.

thank you

 

[fohdeesha]

Has anyone with a 7150-c12p had issues with it occasionally stopping switching? I've had a new one for about 4 months now and approximately every two months it turns into a brick until its rebooted.

flash 8095f

 

[tubs-ffm]

Hopefully the 60mm will help with the case closed,

Yes. My ASIC temperature with two modified exhaust fans and the Sunon MF60101V3-1000U-A99 on top of the ASIC was between 66 and 76 °C, depending on the ambient temperature.

I also toyed with the idea of an intake fan on the side vent. With these lower powered fans, seems like it'd be okay to run 3 off the one header.

Before you do a radical tuning and cut the case, I would start to cut out the "holes" in front of the exhaust fans. There is more metal sheet instead of hole. For safety and good locking fix a metal net from inside.

 

[Roelf Zomerman]

I was wondering if there is a technique in the ICX platform that allows me to intercept all DNS traffic from clients and redirect it on the switch itself..

I'm trying out Anycast on Windows Domain Controllers (blog.azureinfra.com) - and was wondering if there was a way to essentially force the clients (by the switch) to use a specific IP address for DNS resolving.. (and yes.. I also need to post on how to perform the BGP routes on the 6450 directly rather than the Juniper)....

so in short.. even if a client has 172.16.5.1 configured as their DNS server - I want the Brocade to intercept all this traffic and point it straight to 51.51.51.51 - my configured anycast IP

 

[mfolnovic]

My network consists of devices connected to 6450, which is connected to pfsense, which is then connected to modem (192.168.1.1).
I've setup inter-vlan routing on switch by following https://forums.servethehome.com/index.php?threads/layer-3-switch-w-pfsense.23236/.

For some reason, my ISP forces me to connected IPTV receivers directly to modem. But, I only have one ethernet port in living room. So my end goal is to have IPTV receiver and TV connected to a USW Flex Mini in living room, that's connected to 6450, if that's possible.

My idea was to have new VLAN 100, and all traffic on that VLAN would be routed directly to modem (not through pfsense). I didn't setup VLAN 100 on pfsense - should I?

At the moment, I have:
- pfsense connected to port 1
- modem connected to port 47
- Flex Mini in living room connected to port 24:
- port 1 is on VLAN70 - TV connected to it
- port 2 is on VLAN100 - laptop connected to it

I also tried to simplify things by connecting living room to port 43, which has untagged VLAN100.

In both scenarios, I can't get IP address from DHCP server. I've tried to play with static routes but couldn't make it work.
While diagnosing this, I've realised that as soon as I add ve 100, I can't ping modem (192.168.1.1).

Any ideas? Thanks in advance!

Here's my configuration:

ver 08.0.30tT313
!
stack unit 1
  module 1 icx6450-48p-poe-port-management-module
  module 2 icx6450-sfp-plus-4port-40g-module
!
!
!
!
vlan 1 name DEFAULT-VLAN by port
router-interface ve 1
!
vlan 30 name Trusted by port
tagged ethe 1/1/1 to 1/1/2 ethe 1/1/7 to 1/1/24
router-interface ve 30
!
vlan 40 name Management by port
tagged ethe 1/1/1 to 1/1/2 ethe 1/1/7 to 1/1/24
untagged ethe 1/1/3 to 1/1/4
router-interface ve 40
!
vlan 70 name IOT by port
tagged ethe 1/1/1 to 1/1/2 ethe 1/1/7 to 1/1/24
router-interface ve 70
!
vlan 100 name IPTV by port
tagged ethe 1/1/13 to 1/1/24 ethe 1/1/47
untagged ethe 1/1/43
router-interface ve 100
!
vlan 300 by port
tagged ethe 1/1/1 to 1/1/2
router-interface ve 300
!
!
!
!
!
aaa authentication web-server default local
aaa authentication enable default local
aaa authentication login default local
enable telnet authentication
hostname icx6450
ip route 0.0.0.0/0 172.26.1.1
!
username root password .....
!
!
!
!
!
interface ve 1
ip address 192.168.2.1 255.255.255.0
!
interface ve 30
ip address 192.168.30.2 255.255.255.0
!
interface ve 40
ip address 192.168.40.2 255.255.255.0
!
interface ve 70
ip address 192.168.70.2 255.255.255.0
!
interface ve 100
ip address 192.168.1.253 255.255.255.0
ip helper-address 1 192.168.1.1
!
interface ve 300
ip address 172.26.1.2 255.255.255.0

And also show ip route:

Total number of IP routes: 9
Type Codes - B:BGP D:Connected O:OSPF R:RIP S:Static; Cost - Dist/Metric
BGP  Codes - i:iBGP e:eBGP
OSPF Codes - i:Inter Area 1:External Type 1 2:External Type 2
        Destination        Gateway         Port          Cost          Type Uptime
1       0.0.0.0/0          172.26.1.1      ve 300        1/1           S    1h55m
2       172.26.1.0/24      DIRECT          ve 300        0/0           D    7d2h
3       192.168.1.0/24     DIRECT          ve 100        0/0           D    1h47m
4       192.168.20.0/24    DIRECT          ve 20         0/0           D    7d2h
5       192.168.30.0/24    DIRECT          ve 30         0/0           D    7d2h
6       192.168.40.0/24    DIRECT          ve 40         0/0           D    7d2h
7       192.168.70.0/24    DIRECT          ve 70         0/0           D    7d2h
8       192.168.80.0/24    DIRECT          ve 80         0/0           D    7d2h
9       192.168.90.0/24    DIRECT          ve 90         0/0           D    7d2h

 

[Drewy]

Before you do a radical tuning and cut the case, I would start to cut out the "holes" in front of the exhaust fans. There is more metal sheet instead of hole. For safety and good locking fix a metal net from inside.

I’ve done this to my pair of 7250’s and while I think it makes (marginal) improvements in temps, it doesn’t (to my old ears) make much if any difference to the noise. To be honest I think it makes it worse

obviously your mileage and ears will vary.

 

[covfefe]

Could someone help me understand what I am doing wrong? Just got an ICX7250, and tried to follow the guide to enable the license, but failed.
It seems I'm missing an easy step, as the `enable` is not working

ICX7250-24 Switch#enable
Incomplete command.

ICX7250-24 Switch#license install perpetual 1 8x10g
Invalid input -> install perpetual 1 8x10g
Type ? for a list

ICX7250-24 Switch#conf t
ICX7250-24 Switch(config)#enable
Incomplete command.

ICX7250-24 Switch(config)#license install perpetual 1 8x10g
Invalid input -> license install perpetual 1 8x10g
Type ? for a list

ICX7250-24 Switch(config)#show license
Index  Lic Mode    Lic Name        Lid/Serial No Lic Type  Status   Lic Period  Lic Capacity  
Stack unit 1:
1    Node Lock    ICX7250-10G-LIC-POD  fwjxxxxxxxFOO  Normal   Active   Unlimited     2
ICX7250-24 Switch(config)#

ICX7250-24 Switch#show version
  Copyright (c) 2017 Ruckus Wireless, Inc. All rights reserved.
    UNIT 1: compiled on Nov 28 2018 at 10:32:45 labeled as SPS08070d
      (25707496 bytes) from Primary SPS08070d.bin
        SW: Version 08.0.70dT211
      Compressed Boot-Monitor Image size = 786944, Version:10.1.14T215 (spz10114)
       Compiled on Thu Nov 15 07:39:58 2018

  HW: Stackable ICX7250-24
==========================================================================
UNIT 1: SL 1: ICX7250-24 24-port Management Module
      Serial  #:DUxxxxxxx99
      License: BASE_SOFT_PACKAGE   (LID: fwxxxxxxFOO)
      P-ASIC  0: type B344, rev 01  Chip BCM56344_A0
==========================================================================
UNIT 1: SL 2: ICX7250-SFP-Plus 8-port 80G Module
==========================================================================
1000 MHz ARM processor ARMv7 88 MHz bus
8192 KB boot flash memory
2048 MB code flash memory
2048 MB DRAM
STACKID 1  system uptime is 2 minute(s) 18 second(s)
The system started at 06:20:59 GMT+00 Tue Feb 08 2022

The system : started=cold start                                  
2:48

 

[fohdeesha]

Could someone help me understand what I am doing wrong? Just got an ICX7250, and tried to follow the guide to enable the license, but failed.
It seems I'm missing an easy step, as the `enable` is not working

ICX7250-24 Switch#enable
Incomplete command.

ICX7250-24 Switch#license install perpetual 1 8x10g
Invalid input -> install perpetual 1 8x10g
Type ? for a list

ICX7250-24 Switch#conf t
ICX7250-24 Switch(config)#enable
Incomplete command.

ICX7250-24 Switch(config)#license install perpetual 1 8x10g
Invalid input -> license install perpetual 1 8x10g
Type ? for a list

ICX7250-24 Switch(config)#show license
Index  Lic Mode    Lic Name        Lid/Serial No Lic Type  Status   Lic Period  Lic Capacity 
Stack unit 1:
1    Node Lock    ICX7250-10G-LIC-POD  fwjxxxxxxxFOO  Normal   Active   Unlimited     2
ICX7250-24 Switch(config)#

ICX7250-24 Switch#show version
  Copyright (c) 2017 Ruckus Wireless, Inc. All rights reserved.
    UNIT 1: compiled on Nov 28 2018 at 10:32:45 labeled as SPS08070d
      (25707496 bytes) from Primary SPS08070d.bin
        SW: Version 08.0.70dT211
      Compressed Boot-Monitor Image size = 786944, Version:10.1.14T215 (spz10114)
       Compiled on Thu Nov 15 07:39:58 2018

  HW: Stackable ICX7250-24
==========================================================================
UNIT 1: SL 1: ICX7250-24 24-port Management Module
      Serial  #:DUxxxxxxx99
      License: BASE_SOFT_PACKAGE   (LID: fwxxxxxxFOO)
      P-ASIC  0: type B344, rev 01  Chip BCM56344_A0
==========================================================================
UNIT 1: SL 2: ICX7250-SFP-Plus 8-port 80G Module
==========================================================================
1000 MHz ARM processor ARMv7 88 MHz bus
8192 KB boot flash memory
2048 MB code flash memory
2048 MB DRAM
STACKID 1  system uptime is 2 minute(s) 18 second(s)
The system started at 06:20:59 GMT+00 Tue Feb 08 2022

The system : started=cold start                                 
2:48

the part you're doing wrong is skipping the entire configuration guide, which the license page you're trying to follow says at the top should be followed first. also enable command isn't working because you were already at the enable level prompt when running it

 

[fohdeesha]

I was wondering if there is a technique in the ICX platform that allows me to intercept all DNS traffic from clients and redirect it on the switch itself..

I'm trying out Anycast on Windows Domain Controllers (blog.azureinfra.com) - and was wondering if there was a way to essentially force the clients (by the switch) to use a specific IP address for DNS resolving.. (and yes.. I also need to post on how to perform the BGP routes on the 6450 directly rather than the Juniper)....

so in short.. even if a client has 172.16.5.1 configured as their DNS server - I want the Brocade to intercept all this traffic and point it straight to 51.51.51.51 - my configured anycast IP

that would be NAT, which L3 switches don't do. also the 6450 does not support bgp