8095g has released, of course only bugfixes to 8095f, but a surprising amount of unexpected reboot fixes. I'll update the guide in the next couple of days
Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)
- Thread starter fohdeesha
- Start date
Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.
Hi,
I own a Brocade ICX6450-24 for almost a year. I don't really need most of its capabilities, but it was the cheaper 24*1gb swith with 4 SFP+ ports. I have pretty basic needs.
During my use of this switch I have encounter something strange which is probably linked to its pro functionnalities.
But first, let me explain my network :
My ISP provide 2 boxes : one called the freebox server that connect to fiber optics and deliver RJ45 connectivity and another one called freebox player used to watch TV. The traffic between the 2 is specific and it is really a pain to filter. So I don't do it.
On a topo view, here what I have :
INTERNET - FREEBOX_SERVER (192.168.1.x) - FW (openBSD) - network (10.11.12.x/24)
|
°- FREEBOX_PLAYER (192.168.1.y)
On a network view, the switch is just behind the freebox server and everything is plugged on it. There are 2 networks on the switch : 192.168.1.x and 10.11.12.x. I have a RJ45 plug between the brocade and the TV zone where it output to another switch where both networks are connected (192xxx for the TV flux between the freebox server and player and 10xxx for the NAS and the Shield TV connected to the TV).
Before the Brocade, I had a Netgear devices and everyhting worked fine. With the Brocade I am unable to get the TV flux on the freebox player. I am sure it is a qeustion of VLAN tagging, but I lack the proper expertise to immediately see the trick and configure the Brocade to allow it.
Do someone have an idea of what I am missing or what topic I should learn to solve my problem ?
cheers,
s.
I own a Brocade ICX6450-24 for almost a year. I don't really need most of its capabilities, but it was the cheaper 24*1gb swith with 4 SFP+ ports. I have pretty basic needs.
During my use of this switch I have encounter something strange which is probably linked to its pro functionnalities.
But first, let me explain my network :
My ISP provide 2 boxes : one called the freebox server that connect to fiber optics and deliver RJ45 connectivity and another one called freebox player used to watch TV. The traffic between the 2 is specific and it is really a pain to filter. So I don't do it.
On a topo view, here what I have :
INTERNET - FREEBOX_SERVER (192.168.1.x) - FW (openBSD) - network (10.11.12.x/24)
|
°- FREEBOX_PLAYER (192.168.1.y)
On a network view, the switch is just behind the freebox server and everything is plugged on it. There are 2 networks on the switch : 192.168.1.x and 10.11.12.x. I have a RJ45 plug between the brocade and the TV zone where it output to another switch where both networks are connected (192xxx for the TV flux between the freebox server and player and 10xxx for the NAS and the Shield TV connected to the TV).
Before the Brocade, I had a Netgear devices and everyhting worked fine. With the Brocade I am unable to get the TV flux on the freebox player. I am sure it is a qeustion of VLAN tagging, but I lack the proper expertise to immediately see the trick and configure the Brocade to allow it.
Do someone have an idea of what I am missing or what topic I should learn to solve my problem ?
cheers,
s.
Can you provide the output of 'show run'? You can wrap it in spoiler and code tags so it keeps formatting and is collapsed by default on page load.
My 6610 was previously part of a stack. How do I go about removing the stack unit 2 from this unit? I followed the guide and did factory set-default followed by reset however stack unconfigure clean always returns Invalid input -> unconfigure clean. Stacking ports and stacking are disabled and I'm using both 40gbe ports successfully as regular ports.
stack command list:
show run:
stack command list:
Code:
SSH@core(config)#stack unconfigure clean
Invalid input -> unconfigure clean
Type ? for a list
SSH@core(config)#stack
disable This unit will never be part of stack
enable Enable stacking feature
mac stacking MAC address
persistent-mac-timer persistent MAC timer
stack-port-resiliency recover stack port errors by errdisabling ports or
reloading units
suggested-id If bootup ID not available, use this
suppress-warning Don't display stacking warnings or errors
unit Configure local parameters for a stack unitshow run:
Code:
SSH@core>show run
Current configuration:
!
ver 08.0.30jT7f3
!
stack unit 1
module 1 icx6610-48p-poe-port-management-module
module 2 icx6610-qsfp-10-port-160g-module
module 3 icx6610-8-port-10g-dual-mode-module
no legacy-inline-power
stack unit 2
module 1 icx6610-48p-poe-port-management-module
module 2 icx6610-qsfp-10-port-160g-module
module 3 icx6610-8-port-10g-dual-mode-module
stack-trunk 2/2/1 to 2/2/2
stack-trunk 2/2/6 to 2/2/7
stack disableHere is the show run command output :
Code:
SSH@bro6450>show run
Current configuration:
!
ver 08.0.30tT313
!
stack unit 1
module 1 icx6450-24-port-management-module
module 2 icx6450-sfp-plus-4port-40g-module
!
!
!
!
vlan 1 name DEFAULT-VLAN by port
router-interface ve 1
!
!
!
!
!
aaa authentication web-server default local
aaa authentication enable default local
aaa authentication login default local
hostname bro6450
ip dhcp-client disable
!
username root password .....
!
!
!
!
!
interface ve 1
ip address 10.11.12.254 255.255.255.0
!
!
!
!
!
!
!
!
!
end
SSH@bro6450>pretty sure stack unconfigure clean happens at the enable level, not the conf t level
What model was the Netgear you previously had? If it wasn't VLAN aware (unmanaged) and the TV equipment is using VLAN tags, the unmanaged switch will happily pass the traffic. The unconfigured ports on the 6450 just default to untagged VLAN 1; if the Freebox packets are VLAN tagged, the switch is either discarding the VLAN tagged packets or honoring them, but has no tagged ports to send them to. Was the Netgear that the TV system was plugged into shared by the rest of your network? Have you also confirmed that the Freebox connected to the TV is pulling the correct IP address to work?
I could be very wrong about what the 6450 is doing though. As this is supplied by your ISP, if their support is worth anything, they might be able to give you some guidance as well.
You can use diagrams.net to draw quick diagrams of how it was before and how it is now.
yeah I can almost promise it's a case of vlans, @sergi0 if you really wanna figure it out, connect the modem directly to your PC, and run wireshark for a few minutes. The dump should show what VLAN tags it's sending out. might be easier to connect the TV box and capture it instead, in case the modem doesn't initiate any TV VLAN traffic until the tv box does
After a few years of lurking, I bit the bullet with 2x 6450s.
I was prepared for pain and many long hours, but no. The guide.... the guide.... I was done with the inital configuration in less than an hour.
Few tips for other first timers:
I had no problems using a PC with serial port and Cisco compatible cable. Worth a show over using some janky adapter.
Synology has a built in TFTP server that was super easy to use.
Beer money sent.
I was prepared for pain and many long hours, but no. The guide.... the guide.... I was done with the inital configuration in less than an hour.
Few tips for other first timers:
I had no problems using a PC with serial port and Cisco compatible cable. Worth a show over using some janky adapter.
Synology has a built in TFTP server that was super easy to use.
Beer money sent.
My 7250 has been running pretty flawlessly for a month now so I think I'll sell the old 6450 that I was keeping around in case something went sideways with the 7250. @fohdeesha if I sell the 6450 here or on r/homelabsales, I should reset the licensing info, yeah? Obv if the buyer is on reddit, I can point them at this thread, and if they're here they should obviously already know.
Let me know, and thanks yet again for starting this awesome thread.
Let me know, and thanks yet again for starting this awesome thread.
Last edited:
yeah i would delete lics and reset back to factory serial
I was just able to score an ICX6610-48P-E from eBay for $140 shipped!
@fohdeesha
Thanks for all the useful information you've compiled and provided within this thread and on your website.
@fohdeesha
Thanks for all the useful information you've compiled and provided within this thread and on your website.
Can somebody take pity on me and just get me up and running. I am trying to get to number 2 in the picture if that's possible. Its just a matter of infrastructure and positioning of AP's right now. My ICX 6450p is set up as per instruction by fodheesha with one Vlan. I think this would be a router on a stick situation but I'm not sure . Devices wired to the switch in the second picture cant be reached whereas everything attached to the router wireless or wired is good. How can I get the devices routed that are wired to the switch in number 2? 1 works ok so far
The switch was a Netgear GS116Ev2. It has basic admin config but I never use them besides for update.
With these hints I seach a little deeper in the freebox config and I found that freebox server and player communicate via VLAN100 (tagged) and they also are visible via the standard LAN (untagged). the freebox player always gets its IP via the freebox server DHCP.
I am still not familiar to what I need to config on the switch, but I am closer to a solution. Is it possible to have a RJ45 port with both VLAN100 (tagged) and standard LAN (untagged) packets ?
Thanks for the link about the diagram, I will use it.
Last edited:
Yes, it most certainly is. This is a very common thing to do. Setup two ports that way, and your two VLAN 100 devices will be able to talk directly to each other over that VLAN (you shouldn't put anything else in that VLAN or do any other configuration of it).
It's probably a hardware limitation, in which case you can't use more VLAN tags simultaneously. Do you really have more than 64 VLANs?
Yes I was. With the xb6 in bridgemode the Linksys R8000 does all the routing(which is better) but the R8000 is also the AP for everything wireless in the house and now it is relegated to the basement. The savages are getting restless lol is there any hope with the current hardware to solve the problem or do I have to have another router or add a wireless AP?