You are awesome.. I had an existing WIN 2016 Server VM and installed the DHCP service. Created the IP helper on my ICX6610 and I am now able to get Sonos working on the switch. You just made my weekend. Thank you so much for all your knowledge and willingness to help everyone. Kudos to you.Gave the built in DHCP server a go to see if I would run into your issue, and I did indeed with a couple IOT type stuff. After a ton of debugging, it turned out to be the fact the FastIron DHCP server is not set as authoritative, and some DHCP stack implementations (like Roku's and Sonos) do not like this, and will ignore it.
I went ahead and just spun up a really lightweight debian VM running isc-dhcp-server, it has it's own transit vlan to the switch, and the switch is set to relay all DHCP requests to it.
Gives me WAY more control than the built in dhcp server in FastIron or pfsense, and with glass-isc-dhcp you get really nice visualizations and lookup of all leases that you wouldn't get otherwise: Akkadius/glass-isc-dhcp
let me know if you want some help setting it up as well as my isc-dhcp config, it's as simple as just apt install isc-dhcp-server then copy in a config, and it'll serve DHCP requests to multiple routed vlans on your switch (just need an ip-helper statement under each VE on the switch)
For anyone trying to figure out why the web interface won't load anything but the port map, be sure to take a look at the getting started guide! I lost quite a bit of time because I didn't flash the newest firmware from the get-go.Firmware + Docs:NOTE: If you buy one of these switches, use the update guide at the following link. It will get you initially set up with a fresh slate, the latest firmware, latest documentation, and run you through the basic setup (choose the appropriate switch article on the left): FCX / ICX6610 - FBOM Docs
If I was at work, or at a client site, ACLs, lots of ACLs. The default policy between networks should be default deny permit by exception...I have multiple VLANs in my home network LAN(Wired)/Wifi/IOT/DMZ etc. and primary reason for separating hosts into separate VLANs is to isolate them from each other for security reasons. I use firewall in pfSense to allow/restrict traffic between VLANs as well as to/from outside.
When you guys use L3 switch to do inter-VLAN routing do you utilize ACLs to filter traffic flow or do you allow everything. I am trying to better understand when it is beneficial to switch to using L3 switch for that purpose instead of a firewall. Thanks!
I can confirm that after a firmware flash, the HP cards work GREAT. And they are cheap as... I bought three recently for $20/ea.search ebay for 649281-B21 - they go for around $35, then you can flash the 40gbE firmware using this post: https://forums.servethehome.com/ind...net-dual-port-qsfp-adapter.20525/#post-198015
yeah there's nothing wrong with thatOdd question: re Brocade 6450-24p. I am just now filling my first-ever Server Rack Cabinet (12U, xRackPro2) which has front and rear doors (and side doors). The Brocade 6450 is top of rack, Rear.
Cable management question: is it 'safe' to feed Cat6 cables on top of the Brocade? There is about a 1-2" clearance above the top-of-rack Brocade; and about 5-6 Cat6 cables would be resting on top the Brocade.
I don't think heat from the brocade would be a problem; but I like to ask before doing stuff. thanks for helping a server-rack noob out
thanksyeah there's nothing wrong with that
also thanks to @seatrope I realized the ICX6610 guide has been totally missing the "factory set-default" command, so anyone who had a used switch with a previous password was left to google when the guide told them to "enable" and it asked them for a PW they didn't have. The ICX6450 guide has had this instruction, not sure how I missed it on the 6610
added it - add missing password removal command · Fohdeesha/lab-docu@bc8d651
Have a great LAN party, Guiness reports largest ever was an insane 22,180 people in Sweden, 2013loading up for the LAN party event this weekend: https://i.imgur.com/F4z8ecE.jpg
will try to post setup/event pics during this weekend. I think we may be the first large scale LAN party to offer 10gbE ports for attendees at every table, even 40gbE depending on which table you sit at
mostly ICX6610s, some ICX7250's, ICX6450s, and a couple FCX's for WAN agg to fiber in the telecom closet