Drag to reposition cover

Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)

Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.

Whattteva

New Member
Dec 15, 2022
16
1
3
if it says it's sending the fan speed 1, but they're running at full speed (don't spin down after boot), it's definitely the mosfet/pwm fan circuit busted like a couple others I've seen here. if it's ebay you could try a return
Oh man, that really sucks. I don't really want to return it cause I have to pay shipping and this thing is massive/heavy, so shipping is gonna be quite a bit.
 

klui

Well-Known Member
Feb 3, 2019
616
295
63
if it says it's sending the fan speed 1, but they're running at full speed (don't spin down after boot), it's definitely the mosfet/pwm fan circuit busted like a couple others I've seen here. if it's ebay you could try a return
I presume by the last sentence these mosfets near the connectors on the PCB and inside the fan cages?
 

selta

New Member
Jan 23, 2023
5
0
1
Hey folks,
Having an oddity and wanted to see if anyone else has run into this. A quick breakdown:
server - Ubuntu 22.04 - mellanox connectx-3, 40Gbps, connected to 1/2/1 via QSFP cable
Normally, 1/2/1 I have in tagged vlans 2, 50
switch - icx 6610-48P

Issue came up when I moved a bunch of services from an old server to this one, and began noticing packet loss when trying to communicate with the server only on vlan 2 (vlan 50 is, by design in this scenario, supposed to be unreachable). Roughly 7-10% of straight pings are lost, even just pinging from the ICX switch to the server(eg: ping 192.168.1.10 count 150 results in packet loss).

Doing a whole lot of troubleshooting, and noticed something. When I remove port 1/2/1 from vlan 50, everything is fine. Zero packet loss. No other network change necessary, just removing that vlan from the port. If I re-add it (vlan 50=> tagged ethernet 1/2/1) , immediately the packet loss starts up again.

Double checked my netplan on the server - there is a default route for vlan 2, as expected, and everything else is fine. For completness in testing, I removed the vlan 50 config from netplan, applied, and even rebooted. Even then, if I tag the port with vlan 50, the packet loss comes back? Double checked the usual suspects like mismatch MTU, speed, duplex, etc., and as far as I'm able to see, all the config is correct.

Checked for any errors on the server (with ifconfig and ethtool) and on the switch (with sh int et 1/21), but the interfaces both look perfectly clean. Zero errors of any kind on both sides.

I don't have a spare 40G card handy (other than an XL710, and well, we all know how that'll go). I just ordered another QSFP cable to rule that out, though the one I'm using is only ~2 months old. My next steps will be to change port on the connect-x and on the ICX to see if that helps, and if it does I'll of course let you all know.

For giggles, I created a new VLAN on the switch, vlan 101. I tagged 1/2/1 with that VLAN, and the packet loss is still present, just less, which makes even less sense.

I do have a spare 10G card I can drop in to test. An older server (also 22.04), on the same switch, but 10G only, tagged with the same VLANs, is not having the issue. So I'm really thinking something with the connectx or cable, but that doesn't explain why it goes away once I remove the vlan on the switchport, to me.
 

Cirdane

New Member
Mar 18, 2023
2
1
1
Hey all
Newbie here with a recently configured ICX6450 so apologies in advance if this has been asked many times.

I have everything up and running now, but I've been trying to set up VLAN's for different purposes and since the rest of my equipment except the switch is TP-link omada I've decide to use Omada Software controller (running in a docker) to config everything.

I've been following the guide to set everything up so the config is basically this:
vlan 1
router-interface ve 1
exit
interface ve 1
ip address 192.168.0.10/24
exit
write mem
temp 1.jpg

And this is my setup in Omada:

temp 2.jpg

I have also set up different WiFi's which correspond to these LAN's using VLAN's 1, 10, and 100.

However anything that tries to connect to the WiFi's that are set up to use VLAN 10 or VLAN 100 gets stuck on just "connecting" so obviously there's some config missing in the switch but I don't really know what to do here?
 

itronin

Well-Known Member
Nov 24, 2018
1,099
723
113
Denver, Colorado
...
However anything that tries to connect to the WiFi's that are set up to use VLAN 10 or VLAN 100 gets stuck on just "connecting" so obviously there's some config missing in the switch but I don't really know what to do here?
If the config is as bare bones as you state then you have not set up in your switch for the other two vlans you have defined in your Omada WiFi: 10 and 100. you need to set those up in the switch. You'll need to tag the AP connected ports in your switch with 10 and 100. Not knowing anything about what Omada expects I suspect you'll keep vlan 1 untagged which means dual-mode on those ports otherwise if your AP's are statically configured for vlan and IP then you may simply need add vlan 1 as tagged on your AP connected ports.
 

tubs-ffm

Active Member
Sep 1, 2013
155
46
28
Remote command to ICX fastiron switch possible?

Hello,
is there a simple way to place remote commands to an ICX fast iron switch via shell script or REST API? What I would like to achieve is to switch off and on PoE on specific ports of my ICX 7150 via home automation to shutdown PoE WiFi APs when not needed.
 

kapone

Well-Known Member
May 23, 2015
1,103
659
113
Remote command to ICX fastiron switch possible?

Hello,
is there a simple way to place remote commands to an ICX fast iron switch via shell script or REST API? What I would like to achieve is to switch off and on PoE on specific ports of my ICX 7150 via home automation to shutdown PoE WiFi APs when not needed.
ssh
 
  • Like
Reactions: noduck

tubs-ffm

Active Member
Sep 1, 2013
155
46
28
Meanwhile I found out about RESTCONF, a possibility to read and set the config by xml or json formated input.

This looks easy to implement. Unfortunately I did not yet figure out how how to use. If someone could let me know the line to issue "no inline power" and "inline power" for a specific network port, let's say 1/1/1, would be great.

Edit:
I am getting close. I already can read the status. This line
Code:
curl -i -k -X "GET" https://192.168.x.y/restconf/data/openconfig-interfaces:interfaces/interface=ethernet%201%2F1%2F1/ethernet/poe/config/enabled -u user:password --insecure
will get me this output
Code:
{"icx-openconfig-if-poe-aug:enabled":true}
Now I only have to find out how to chenge the value.
 
Last edited:
  • Like
Reactions: noduck

MannyLNJ

New Member
Mar 19, 2023
11
5
3
Hello. I am not sure now if I ordered the right items. My home network is all 1GB products but I am slowly adding 2.5GB devices. Right now my PC and my OpnSense system both supoort 2.5G. I bought a Brocade FCX648S-HPOE 48 on Ebay along with a Brocade ES46625M-FLF-08 2x 10GB XFP Switch Modile. I know the fans may be loud but I have all my network gear in the basement and while I do sit near the shelves. I can move it to the other side of the basement if I have power ran. From what I understand if I have the right transceiver I can turn the switch interconnects in the back into 2.5G ports is that correct? If not what should I buy?
 

Mithril

Active Member
Sep 13, 2019
320
99
28
Anyone know the pinout for the EPS cable? I picked up An ICX6400-EPS1500 for cheap, but the cables are not cheap :( The connector is a standard computer power supply (20 pin). Looks like the EPS1500 effectively is in low power mode unless theres a cable connected so I can't even test what I purchased :(

Edit:[Found in thread!]
 

Mithril

Active Member
Sep 13, 2019
320
99
28
If anyone wants a pinout for the DC cable to power 64XX switches with an ICX6400-EPS1500

Code:
WST Coonnectors P20-I42002 (ATX V1, MiniFit Jr 1727080020 etc.)

Pins are straight through, connection 1 on one end goes to connection 1 on the other end.

Cable including connectors is 1M long.

Viewed from the switch or psu side. Retaining clip at top.

______________===______________
|11|12|13|14|15|16|17|18|19|20|
|01|02|03|04|05|06|07|08|09|10|

1-5,11-15 : 18AWG 300V insulated wire.
______________===______________
|11|12|13|14|15|  |  |  |  |  |
|01|02|03|04|05|  |  |  |  |  |

7-10,17-19 : 7 Conductor Unshielded Cable, 18AWG 300V insulated wire. Like Belden 8467MN. These may be the 54v PoE wires.
______________===______________
|  |  |  |  |  |  |17|18|19|  |
|  |  |  |  |  |  |07|08|09|10|

6,16,20 : Empty
______________===______________
|  |  |  |  |  |16|  |  |  |20|
|  |  |  |  |  |06|  |  |  |  |
Oh thank sweet [censored] this is what I'm looking for! TY!!!
 
  • Like
Reactions: fohdeesha

Cirdane

New Member
Mar 18, 2023
2
1
1
If the config is as bare bones as you state then you have not set up in your switch for the other two vlans you have defined in your Omada WiFi: 10 and 100. you need to set those up in the switch. You'll need to tag the AP connected ports in your switch with 10 and 100. Not knowing anything about what Omada expects I suspect you'll keep vlan 1 untagged which means dual-mode on those ports otherwise if your AP's are statically configured for vlan and IP then you may simply need add vlan 1 as tagged on your AP connected ports.
Thank you, I managed to find some documentation on how dual-mode works and that did the trick :)
 
  • Like
Reactions: itronin

tubs-ffm

Active Member
Sep 1, 2013
155
46
28
Thank you. Meanwhile I got it.
The TN is what I have used to figure out how to use the the restconf. I am not an expert in this. So I had use a little bit trial and error to get the right formating of the required input values.

Finally this did the trick:
Code:
curl -vX "PUT" -d @"input.json" --header "Content-Type: application/yang-data+json" https://192.168.x.y/restconf/data/openconfig-interfaces:interfaces/interface=ethernet%201%2F1%2F1/ethernet/poe/config/enabled -u user:password --insecure
With this as input file:
JSON:
{"icx-openconfig-if-poe-aug:enabled":false}
I was not able to include the json input in the code for the command line, but this is fine. In the automation I can separate the input.

I would think remote ssh would be more straightforward.
Depends. If you want do do something manually, yes. For automation a single command is easier to handle. Error handling also is easier. SNMP would be another option. But so far I did not yet checked what will be easier to handle by Home Assistant: restconf or snmp?
 

klui

Well-Known Member
Feb 3, 2019
616
295
63
curl .... -d ${JSON} ....

i.e.: curl .... -d '{ "icx-....": false}' ....

The problem with SNMP and Restconf is the commands are too different from the switch's CLI and while you can use Restconf there's no guarantee all parameters are configurable using it. I've never tried to decipher configuring network devices using SNMP. For more straightforward switch automation I prefer something like paramiko.
 
  • Like
Reactions: tubs-ffm

vpadro

New Member
Jul 16, 2015
16
2
3
46
I don't know what I did but I can't get tagged vlans in a working state, ports on 3 different untagged vlans (VLAN50, 51 & 55) get IP from DHCP, DNS, transit VLAN works as expected on a pfsense router, meaning I have internet traffic on those 3 untagged VLANs, but can't get DHCP or Static addressing to reach the other VLANs/Internet on the Server VLAN or the LAN VLAN, maybe some pointers where to look or un-do.

Here's the config:

swrouter01(config-vlan-60)#sh run
Current configuration:
!
ver 09.0.10eT213
!
stack unit 1
module 1 icx7250-48-port-management-module
module 2 icx7250-sfp-plus-8port-80g-module
stack disable
!
!
!
global-stp
!
!
vlan 1 name DEFAULT-VLAN by port
no untagged ethe 1/2/8
spanning-tree
!
vlan 40 name Transit by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 50 name LAN by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/39 ethe 1/1/43 to 1/1/46 ethe 1/2/1 to 1/2/4 ethe 1/2/7 to 1/2/8
untagged ethe 1/1/2 to 1/1/4 ethe 1/1/6 to 1/1/9 ethe 1/1/11 ethe 1/1/13 ethe 1/1/15 to 1/1/17 ethe 1/1/20 to 1/1/21 ethe 1/1/23 ethe 1/1/25 ethe 1/1/27 ethe 1/1/29 ethe 1/1/31 to 1/1/38 ethe 1/1/40 ethe 1/1/47 ethe 1/2/5 to 1/2/6
!
vlan 51 name OOB by port
tagged ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/1 ethe 1/1/5 ethe 1/1/26 ethe 1/1/28 ethe 1/1/30
!
vlan 52 name VoIP by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/39
!
vlan 53 name Guest by port
tagged ethe 1/1/39 to 1/1/40
ip access-group NoPeaking in
!
vlan 54 name IoT by port
tagged ethe 1/1/39 to 1/1/40
ip access-group NoPeaking in
!
vlan 55 name Management by port
tagged ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/14 ethe 1/1/18 ethe 1/1/43 to 1/1/46 ethe 1/1/48 ethe 1/2/1 to 1/2/4
!
vlan 56 name vAppliaces by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 60 name Servers by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/16 ethe 1/1/20 ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/22 ethe 1/1/24
!
vlan 65 name "Dev Servers" by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/16 ethe 1/1/20 ethe 1/1/39 ethe 1/2/7
!
vlan 70 name WFH by port
tagged ethe 1/1/39
untagged ethe 1/1/19
!
vlan 80 name "Dev LAN" by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 81 name "Dev LAN 01" by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 90 name "Storage 01" by port
tagged ethe 1/1/39 ethe 1/2/5 to 1/2/6
!
vlan 91 name "Storage 02" by port
tagged ethe 1/1/39 ethe 1/2/5 to 1/2/6
!
vlan 92 name vMotion by port
tagged ethe 1/1/39 ethe 1/2/1 to 1/2/4
!
vlan 410 name WAN by port
tagged ethe 1/1/39
untagged ethe 1/1/41
!
vlan 420 name WAN1 by port
tagged ethe 1/1/39
untagged ethe 1/1/42
!
!
!
!
!
!
ip route 0.0.0.0/0 192.168.40.1
!
!
clock timezone gmt GMT-06
hostname swrouter01
ip dns domain-list padrosys.net
ip dns server-address 192.168.50.2 192.168.50.3
ip tftp blocksize 8192
!
!
ntp
disable serve
server 192.168.50.4
server 192.168.50.5
!
!
!
!
!
!
!
!
!
interface management 1
!
interface ve 40
ip address 192.168.40.2 255.255.255.248
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 50
ip address 192.168.50.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 51
ip address 192.168.51.1 255.255.255.224
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 52
ip address 192.168.52.1 255.255.255.224
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 53
ip address 10.50.53.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 54
ip address 10.50.54.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 55
ip address 192.168.55.1 255.255.255.128
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 56
ip address 192.168.56.1 255.255.255.128
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 60
ip address 192.168.60.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 65
ip address 192.168.65.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 70
ip address 192.168.70.1 255.255.255.240
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 80
ip address 192.168.80.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 81
ip address 192.168.81.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 90
ip address 192.168.90.1 255.255.255.224
!
interface ve 91
ip address 192.168.91.1 255.255.255.224
!
interface ve 92
ip address 10.10.76.1 255.255.255.224
!
!

ip access-list extended NoPeaking
sequence 10 permit udp any host 192.168.50.2 eq bootps
sequence 20 permit udp any host 192.168.50.2 eq dns
sequence 30 permit udp any host 192.168.50.3 eq bootps
sequence 40 permit udp any host 192.168.50.3 eq dns
sequence 50 deny ip any 10.0.0.0 0.255.255.255
sequence 60 deny ip any 172.16.0.0 0.15.255.255
sequence 70 deny ip any 192.168.0.0 0.0.255.255
sequence 80 permit ip any any
!

!
!



!
!
!
!
username super password .....
username admin password .....
username vpadro password .....
!
aaa authentication login default local
!
aaa authentication web-server default local
!
aaa authentication snmp-server default local
!
ip dhcp-client disable
!


!


!


!
no telnet server
!
snmp-server community 2 Hidden= ro
!
manager disable
manager port-list 987
!
cli timeout 5
!


!


!

end

swrouter01(config-vlan-60)#sh ip route
Total number of IP routes: 17
Type Codes - B:BGP D:Connected O:OSPF R:RIP S:Static; Cost - Dist/Metric
BGP Codes - i:iBGP e:eBGP
OSPF Codes - i:Inter Area 1:External Type 1 2:External Type 2
STATIC Codes - v:Inter-VRF
Destination Gateway Port Cost Type Uptime
1 0.0.0.0/0 192.168.40.1 ve 40 1/1 S 11h45m
2 10.10.76.0/27 DIRECT ve 92 0/0 D 11h45m
3 10.50.53.0/26 DIRECT ve 53 0/0 D 11h45m
4 10.50.54.0/26 DIRECT ve 54 0/0 D 11h45m
5 192.168.40.0/29 DIRECT ve 40 0/0 D 11h45m
6 192.168.50.0/24 DIRECT ve 50 0/0 D 11h45m
7 192.168.51.0/27 DIRECT ve 51 0/0 D 11h45m
8 192.168.52.0/27 DIRECT ve 52 0/0 D 11h45m
9 192.168.55.0/25 DIRECT ve 55 0/0 D 11h45m
10 192.168.56.0/25 DIRECT ve 56 0/0 D 11h45m
11 192.168.60.0/24 DIRECT ve 60 0/0 D 11h45m
12 192.168.65.0/24 DIRECT ve 65 0/0 D 11h45m
13 192.168.70.0/28 DIRECT ve 70 0/0 D 11h45m
14 192.168.80.0/26 DIRECT ve 80 0/0 D 11h45m
15 192.168.81.0/26 DIRECT ve 81 0/0 D 11h45m
16 192.168.90.0/27 DIRECT ve 90 0/0 D 11h45m
17 192.168.91.0/27 DIRECT ve 91 0/0 D 11h45m

Thank you.

EDIT: Disregard, did an extended ping and got 1048ms more than a few times, changed the ethernet cable and all good, will leave the post for future references on intervlan routing.
 
Last edited:

tubs-ffm

Active Member
Sep 1, 2013
155
46
28
The problem with SNMP and Restconf is the commands are too different from the switch's CLI and while you can use Restconf there's no guarantee all parameters are configurable using it. I've never tried to decipher configuring network devices using SNMP. For more straightforward switch automation I prefer something like paramiko.
Thank you. I believe that there are good solutions if it comes to full automation or complex remote control. What I want to achieve is to issue a single command for a single function using the functionality the home automation software has build in. Here a simple ssh script, restconf or snmp seems to be the mist straight forward way.

I will try out what I am able to handle in the best way. The options now are on the table.
 

vpadro

New Member
Jul 16, 2015
16
2
3
46
I don't know what I did but I can't get tagged vlans in a working state, ports on 3 different untagged vlans (VLAN50, 51 & 55) get IP from DHCP, DNS, transit VLAN works as expected on a pfsense router, meaning I have internet traffic on those 3 untagged VLANs, but can't get DHCP or Static addressing to reach the other VLANs/Internet on the Server VLAN or the LAN VLAN, maybe some pointers where to look or un-do.

Here's the config:

swrouter01(config-vlan-60)#sh run
Current configuration:
!
ver 09.0.10eT213
!
stack unit 1
module 1 icx7250-48-port-management-module
module 2 icx7250-sfp-plus-8port-80g-module
stack disable
!
!
!
global-stp
!
!
vlan 1 name DEFAULT-VLAN by port
no untagged ethe 1/2/8
spanning-tree
!
vlan 40 name Transit by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 50 name LAN by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/39 ethe 1/1/43 to 1/1/46 ethe 1/2/1 to 1/2/4 ethe 1/2/7 to 1/2/8
untagged ethe 1/1/2 to 1/1/4 ethe 1/1/6 to 1/1/9 ethe 1/1/11 ethe 1/1/13 ethe 1/1/15 to 1/1/17 ethe 1/1/20 to 1/1/21 ethe 1/1/23 ethe 1/1/25 ethe 1/1/27 ethe 1/1/29 ethe 1/1/31 to 1/1/38 ethe 1/1/40 ethe 1/1/47 ethe 1/2/5 to 1/2/6
!
vlan 51 name OOB by port
tagged ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/1 ethe 1/1/5 ethe 1/1/26 ethe 1/1/28 ethe 1/1/30
!
vlan 52 name VoIP by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/39
!
vlan 53 name Guest by port
tagged ethe 1/1/39 to 1/1/40
ip access-group NoPeaking in
!
vlan 54 name IoT by port
tagged ethe 1/1/39 to 1/1/40
ip access-group NoPeaking in
!
vlan 55 name Management by port
tagged ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/14 ethe 1/1/18 ethe 1/1/43 to 1/1/46 ethe 1/1/48 ethe 1/2/1 to 1/2/4
!
vlan 56 name vAppliaces by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 60 name Servers by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/16 ethe 1/1/20 ethe 1/1/39 ethe 1/2/7
untagged ethe 1/1/22 ethe 1/1/24
!
vlan 65 name "Dev Servers" by port
tagged ethe 1/1/10 ethe 1/1/12 ethe 1/1/16 ethe 1/1/20 ethe 1/1/39 ethe 1/2/7
!
vlan 70 name WFH by port
tagged ethe 1/1/39
untagged ethe 1/1/19
!
vlan 80 name "Dev LAN" by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 81 name "Dev LAN 01" by port
tagged ethe 1/1/39 ethe 1/2/7
!
vlan 90 name "Storage 01" by port
tagged ethe 1/1/39 ethe 1/2/5 to 1/2/6
!
vlan 91 name "Storage 02" by port
tagged ethe 1/1/39 ethe 1/2/5 to 1/2/6
!
vlan 92 name vMotion by port
tagged ethe 1/1/39 ethe 1/2/1 to 1/2/4
!
vlan 410 name WAN by port
tagged ethe 1/1/39
untagged ethe 1/1/41
!
vlan 420 name WAN1 by port
tagged ethe 1/1/39
untagged ethe 1/1/42
!
!
!
!
!
!
ip route 0.0.0.0/0 192.168.40.1
!
!
clock timezone gmt GMT-06
hostname swrouter01
ip dns domain-list padrosys.net
ip dns server-address 192.168.50.2 192.168.50.3
ip tftp blocksize 8192
!
!
ntp
disable serve
server 192.168.50.4
server 192.168.50.5
!
!
!
!
!
!
!
!
!
interface management 1
!
interface ve 40
ip address 192.168.40.2 255.255.255.248
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 50
ip address 192.168.50.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 51
ip address 192.168.51.1 255.255.255.224
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 52
ip address 192.168.52.1 255.255.255.224
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 53
ip address 10.50.53.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 54
ip address 10.50.54.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 55
ip address 192.168.55.1 255.255.255.128
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 56
ip address 192.168.56.1 255.255.255.128
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 60
ip address 192.168.60.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 65
ip address 192.168.65.1 255.255.255.0
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 70
ip address 192.168.70.1 255.255.255.240
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 80
ip address 192.168.80.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 81
ip address 192.168.81.1 255.255.255.192
ip helper-address 1 192.168.50.2
ip helper-address 2 192.168.50.3
!
interface ve 90
ip address 192.168.90.1 255.255.255.224
!
interface ve 91
ip address 192.168.91.1 255.255.255.224
!
interface ve 92
ip address 10.10.76.1 255.255.255.224
!
!

ip access-list extended NoPeaking
sequence 10 permit udp any host 192.168.50.2 eq bootps
sequence 20 permit udp any host 192.168.50.2 eq dns
sequence 30 permit udp any host 192.168.50.3 eq bootps
sequence 40 permit udp any host 192.168.50.3 eq dns
sequence 50 deny ip any 10.0.0.0 0.255.255.255
sequence 60 deny ip any 172.16.0.0 0.15.255.255
sequence 70 deny ip any 192.168.0.0 0.0.255.255
sequence 80 permit ip any any
!

!
!



!
!
!
!
username super password .....
username admin password .....
username vpadro password .....
!
aaa authentication login default local
!
aaa authentication web-server default local
!
aaa authentication snmp-server default local
!
ip dhcp-client disable
!


!


!


!
no telnet server
!
snmp-server community 2 Hidden= ro
!
manager disable
manager port-list 987
!
cli timeout 5
!


!


!

end

swrouter01(config-vlan-60)#sh ip route
Total number of IP routes: 17
Type Codes - B:BGP D:Connected O:OSPF R:RIP S:Static; Cost - Dist/Metric
BGP Codes - i:iBGP e:eBGP
OSPF Codes - i:Inter Area 1:External Type 1 2:External Type 2
STATIC Codes - v:Inter-VRF
Destination Gateway Port Cost Type Uptime
1 0.0.0.0/0 192.168.40.1 ve 40 1/1 S 11h45m
2 10.10.76.0/27 DIRECT ve 92 0/0 D 11h45m
3 10.50.53.0/26 DIRECT ve 53 0/0 D 11h45m
4 10.50.54.0/26 DIRECT ve 54 0/0 D 11h45m
5 192.168.40.0/29 DIRECT ve 40 0/0 D 11h45m
6 192.168.50.0/24 DIRECT ve 50 0/0 D 11h45m
7 192.168.51.0/27 DIRECT ve 51 0/0 D 11h45m
8 192.168.52.0/27 DIRECT ve 52 0/0 D 11h45m
9 192.168.55.0/25 DIRECT ve 55 0/0 D 11h45m
10 192.168.56.0/25 DIRECT ve 56 0/0 D 11h45m
11 192.168.60.0/24 DIRECT ve 60 0/0 D 11h45m
12 192.168.65.0/24 DIRECT ve 65 0/0 D 11h45m
13 192.168.70.0/28 DIRECT ve 70 0/0 D 11h45m
14 192.168.80.0/26 DIRECT ve 80 0/0 D 11h45m
15 192.168.81.0/26 DIRECT ve 81 0/0 D 11h45m
16 192.168.90.0/27 DIRECT ve 90 0/0 D 11h45m
17 192.168.91.0/27 DIRECT ve 91 0/0 D 11h45m

Thank you.
Diagram:

EDIT: Disregard, did an extended ping and got 1048ms more than a few times, changed the ethernet cable and all good, will leave the post for future references on intervlan routing.
 

Attachments

Last edited:

Dade49

New Member
Mar 26, 2021
5
0
1
I've got a spare Brocade cable (came out of a 7250-24P box) still in its original bag, would be happy to ship it to you for a reasonable price if you are interested. It should work with any USB-DE9 adapter with a male connector (I use a Tripp-Lite adapter because it's what I had on hand).

PM me if interested.
I made an adapter (mini-USB to RJ-45) for the 7250-24P that I just picked up using this post:
https://www.reddit.com/r/Brocade/comments/k25l5u/_/gdukwuk
 

moriel5

New Member
Aug 4, 2019
25
4
3
Well then, after all this time I finally have the necessary tools (at least I think I do) and knowledge to even attempt to connect to my Brocade FCX648-HPOE (picking up an old Cisco 887VA-K9 V2 (the old version) that was thrown out by a local medical center branch has helped in that regard).

Unfortunately, I cannot seem to be able to connect to it, no matter what I do (I was able to connect to the Cisco router without any issues, although I am still struggling to understand how to get it to acknowledge what is connected to it, and not just that something is connected).

I have tried using serial RS232 from my motherboard (started with an ASRock H97M, now with an Asus Z97 Pro Gamer), however have been unsuccessful in connecting to anything with the onboard serial controller (I tried both passthrough and crossover cables), so switched over to CH340G-based USB serial controllers (the USB to RJ-45 patch cable works well with the Cisco router, still need to test the USB to RS232 adapter in conjunction with the crossover cable), however even then I am unable to get any output from the console (I use Picocom, and I have verified that my settings are correct: 9600/N/N/8/1 with /dev/ttyUSB0, as dmesg and ls /dev/ report), whether I try using the front RS232 port pr the rear RJ-45 console port.

It appears as though the switch is working (despite it not serving DHCP) from the LEDs that remain on after initialization (PS1, PS2 and Stack ID 1), so I am really stumped here.