Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)
- Thread starter fohdeesha
- Start date
Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.
anyone know what power supply is in the ICX 7150-24p. I got a dead one. its clearly different than the 7250-24p and 6450-24-48p
Most of my rationale is because I have a lot of experience (job and hobby) with routing&etc. Switching, not so much.
Off topic, but I made the switch to a HA active-standby Kea DHCP setup. Took a while to figure things out for BIND DNS updates, but got it going and I like it.
That's true of the entire 7xxx family, not just 72xx.
You certainly interconnect any type of switch, and even use LAGs to provide higher-bandwidth links if you like. You'll just be managing them as independent switches, instead of a single 'logical' switch.
You certainly interconnect any type of switch, and even use LAGs to provide higher-bandwidth links if you like. You'll just be managing them as independent switches, instead of a single 'logical' switch.
@fohdeesha - using the Ruckus warranty checker for some of these switches on eBay returns a 'no asset found'. From your vast Ruckus knowledege - is it indicative of grey market / serial not yet in system? Just trying to avoid fake labels (hence fake listings)
Hello all im looking for feedback on my switch (ICX-6610) configuration i have a few concerns:
1) my fw version is older than whats available now, should i upgrade? any benefits
2) I currently have spanning-tree enabled should i keep it that way?
3) My router is an OPNsense box, and its currently doing all of the inter VLAN communication, should i move that to the switch? (any benefits?)
4) If i do #3 then im guessing i would have to do all of the VLAN communication rules/policies on the switch right?
Here is my config:
1) my fw version is older than whats available now, should i upgrade? any benefits
2) I currently have spanning-tree enabled should i keep it that way?
3) My router is an OPNsense box, and its currently doing all of the inter VLAN communication, should i move that to the switch? (any benefits?)
4) If i do #3 then im guessing i would have to do all of the VLAN communication rules/policies on the switch right?
Here is my config:
Code:
Current configuration:
!
ver 08.0.30tT7f3
!
stack unit 1
module 1 icx6610-48p-poe-port-management-module
module 2 icx6610-qsfp-10-port-160g-module
module 3 icx6610-8-port-10g-dual-mode-module
!
global-stp
!
!
!
spanning-tree single
!
vlan 1 name DEFAULT-VLAN by port
router-interface ve 1
spanning-tree
!
vlan 10 name TRUSTED by port
tagged ethe 1/1/1 to 1/1/3 ethe 1/1/36 ethe 1/1/41 ethe 1/1/43 ethe 1/3/1 to 1/3/2
untagged ethe 1/1/8 to 1/1/9 ethe 1/1/12 ethe 1/1/16 ethe 1/1/18 ethe 1/1/22 ethe 1/1/24 to 1/1/28 ethe 1/1/38 ethe 1/3/3 ethe 1/3/8
router-interface ve 10
spanning-tree
!
vlan 69 name GUEST by port
tagged ethe 1/1/1 to 1/1/3 ethe 1/1/36 ethe 1/1/41 ethe 1/1/43 ethe 1/3/1
router-interface ve 69
spanning-tree
!
vlan 88 name WORK by port
tagged ethe 1/1/1 to 1/1/3 ethe 1/1/36 to 1/1/37 ethe 1/1/41 ethe 1/1/43 ethe 1/3/1
router-interface ve 88
spanning-tree
!
vlan 120 name IOT by port
tagged ethe 1/1/1 to 1/1/3 ethe 1/1/36 to 1/1/37 ethe 1/1/41 ethe 1/1/43 ethe 1/3/1
router-interface ve 120
spanning-tree
!
vlan 130 name CCTV by port
tagged ethe 1/1/1 to 1/1/3 ethe 1/1/36 ethe 1/1/41 ethe 1/1/43 ethe 1/3/1
untagged ethe 1/1/14 to 1/1/15 ethe 1/1/19 ethe 1/1/31 to 1/1/32 ethe 1/1/34 ethe 1/1/39 to 1/1/40 ethe 1/1/45 ethe 1/1/47 to 1/1/48 ethe 1/3/7
router-interface ve 130
spanning-tree
!
!
spanning-tree single 802-1w
spanning-tree single 802-1w priority 0
!
!
!
!
aaa authentication web-server default local
aaa authentication enable default local
aaa authentication login default local
enable telnet authentication
hostname superbeefbox
ip dhcp-client disable
ip route 0.0.0.0/0 10.0.0.1
!
username root password .....
!
!
!
!
!
!
!
!
!
interface ethernet 1/1/1
dual-mode
!
interface ethernet 1/1/2
port-name DownStairs-AP
dual-mode
inline power
!
interface ethernet 1/1/3
port-name UpStairs-AP
dual-mode
inline power
!
interface ethernet 1/1/4
port-name Firewall-IPMI
!
interface ethernet 1/1/8
port-name Sonos-Amp
!
interface ethernet 1/1/9
port-name Living-room-apple-tv
!
interface ethernet 1/1/12
port-name AC_Closet_Switch
!
interface ethernet 1/1/14
port-name Driveway-Camera
inline power
!
interface ethernet 1/1/15
port-name Backyard-Camera
inline power
!
interface ethernet 1/1/16
port-name SuperDesktop
!
interface ethernet 1/1/18
port-name SonosArc
!
interface ethernet 1/1/19
port-name Lanai-Camera
inline power
!
interface ethernet 1/1/22
port-name Gym-AppleTV
!
interface ethernet 1/1/24
port-name MasterBed AppleTV
!
interface ethernet 1/1/25
port-name Sonos-Amp-Pool
!
interface ethernet 1/1/26
port-name Envisalink
!
interface ethernet 1/1/27
port-name Hubitat Upstairs
!
interface ethernet 1/1/28
port-name Sonos-Amp-Kitchen
!
interface ethernet 1/1/31
port-name KidsHall-Camera
inline power
!
interface ethernet 1/1/32
port-name Stairs-Camera
inline power
!
interface ethernet 1/1/34
port-name LivingRoom-Camera
inline power
!
interface ethernet 1/1/36
port-name Lanai-AP
dual-mode
inline power
!
interface ethernet 1/1/37
port-name GameRoomSwitch
dual-mode
!
interface ethernet 1/1/38
port-name Yanelis-Office
!
interface ethernet 1/1/39
port-name SmallGarage-Camera
inline power
!
interface ethernet 1/1/40
port-name LargeGarage-Camera
inline power
!
interface ethernet 1/1/41
port-name MiguelOffice-2nd
dual-mode
!
interface ethernet 1/1/43
port-name LGarage-AP
dual-mode
inline power
!
interface ethernet 1/1/45
port-name Backyard-Side-Camera
inline power
!
interface ethernet 1/1/47
port-name Kitchen-Camera
inline power
!
interface ethernet 1/1/48
port-name FrontDoor-Camera
inline power
!
interface ethernet 1/3/1
port-name LAN/Firewall
dual-mode
speed-duplex 10G-full
!
interface ethernet 1/3/2
port-name Beef_Garage
dual-mode
speed-duplex 10G-full
!
interface ethernet 1/3/3
port-name SuperDesktop
speed-duplex 10G-full
!
interface ethernet 1/3/4
speed-duplex 10G-full
!
interface ethernet 1/3/5
speed-duplex 10G-full
!
interface ethernet 1/3/6
speed-duplex 10G-full
!
interface ethernet 1/3/7
port-name BlueIris
speed-duplex 10G-full
!
interface ethernet 1/3/8
port-name BlueIris
speed-duplex 10G-full
!
interface ve 1
ip address 10.0.0.2 255.255.255.0
!
interface ve 10
ip address 10.0.10.2 255.255.255.0
!
interface ve 69
ip address 172.30.69.2 255.255.255.0
!
interface ve 88
ip address 172.18.88.2 255.255.255.0
!
interface ve 120
ip address 192.168.120.2 255.255.255.0
!
interface ve 130
ip address 192.168.130.2 255.255.255.0
!
!
!
!
!
lldp run
!
!
!
!
endI cannot answer to all of your questions,m but let me try a part of it.
The benefit could be that it could be faster in case of your OPNsense box is the bottle neck. This depends on the routing performance of the OPNsense box and the connection links between ICX switch and OPNsense switch.
Yes. Setting firewall rules in OPNsense is much easier than do the same on the switch.
But when I look on your config it already looks like a L3 configuration to me. All VLAN has assigned a router interface. For doing routing on the OPNsense box a L2 set-up might be what you want. In this case only one router interface ve1 (or other vlan id) for the default VLAN is required.
Keep in mind that OPNsense (and pfSense) has a limitation when it comes to their system architecture. Boiling it down to it's simplest terms, you cannot use the firewall to run a DHCP server for any VLANs that aren't also setup on the firewall. This means that if you move your VLANs to the switch, then you cannot use the firewall's DHCP server to assign IPs for those VLANs.
Normally you would just run the DHCP server on the switch, but these Brocade switch's DHCP server cannot be run as an "Authoritative" server and therefore some devices (some IOT devices for example) may not be able to receive an ip address from the switch. It's a limitation that won't affect all of your connected devices, but odds are there are a few that won't work with the switch's DHCP server.
There are solutions/work arounds, but it's another layer of complexity that you need to be aware of and plan for before you run blindly into setting up the switch to run your VLANs.
Hey everyone, I’m running out of ideas to try and I’d love some input from folks smarter than myself so here we go:
I have a 6450-48p that I have reset and followed the guides on, etc (all amazing by the way, and so is this thread). Using two of the suggested MikroTik copper SFP+ modules I can run a speed test to my computer and hit around 1850Mbps as expected. However when I run any sort of speed test on the standard switch ports, my speeds are roughly 400Mbps.
Am I mistakenly under the impression that I should be seeing closer to 940Mbps on the rest of the switch ports? I’ve messed with flow control, duplex settings, a ton of Google searching and I’m not getting very far. It looks like the switch doesn’t recognize the SFP+ modules and they show empty, and I can see that the phy device never initializes from the console. Yet it will tell me when I unplug the module and they’re clearly working.
Hopefully this isn’t functioning as expected, but I’m not sure what to try next. I’ve only tried with two of the SFP ports, unplugged a module and left one in, and still haven’t seen any changes.
Any ideas or direction for next steps would be appreciated!
I have a 6450-48p that I have reset and followed the guides on, etc (all amazing by the way, and so is this thread). Using two of the suggested MikroTik copper SFP+ modules I can run a speed test to my computer and hit around 1850Mbps as expected. However when I run any sort of speed test on the standard switch ports, my speeds are roughly 400Mbps.
Am I mistakenly under the impression that I should be seeing closer to 940Mbps on the rest of the switch ports? I’ve messed with flow control, duplex settings, a ton of Google searching and I’m not getting very far. It looks like the switch doesn’t recognize the SFP+ modules and they show empty, and I can see that the phy device never initializes from the console. Yet it will tell me when I unplug the module and they’re clearly working.
Hopefully this isn’t functioning as expected, but I’m not sure what to try next. I’ve only tried with two of the SFP ports, unplugged a module and left one in, and still haven’t seen any changes.
Any ideas or direction for next steps would be appreciated!
@fohdeesha
Sorry for tagging - Do you happen to know details about the 7450 HW and EEPROM layout?
My 7450 with broken EEPROM is currently at a repair center and it seems like I was wrong, the normal 25L6433F EEPROMs are fine...
i looked through the u-boot source code, and it seems like for the 7450, the redundant SPI EEPROMs only hold u-boot and DDR shmoo.
There is something:
so
So now the question is: What is at CS 2?
There is an MR25H256CDF placed next to the 2x 25L6433F. Does this chip store the env? This seems like the only logical option to me
Update: I've carved through the image and found this in the device tree:
Sorry for tagging - Do you happen to know details about the 7450 HW and EEPROM layout?
My 7450 with broken EEPROM is currently at a repair center and it seems like I was wrong, the normal 25L6433F EEPROMs are fine...
i looked through the u-boot source code, and it seems like for the 7450, the redundant SPI EEPROMs only hold u-boot and DDR shmoo.
There is something:
Code:
#define SPATHA_ENV_SPI_CS (CONFIG_IPROC_QSPI_CS + 2) /* SPI-NVRAM */
#define SPATHA_ENV_OFFSET 0X00000 /* Saved in SPI-NVRAM */SPATHA_ENV_SPI_CS is 2... CS for the other 25L6433F EEPROMs seems to be 0 and 1So now the question is: What is at CS 2?
There is an MR25H256CDF placed next to the 2x 25L6433F. Does this chip store the env? This seems like the only logical option to me
Update: I've carved through the image and found this in the device tree:
Code:
mr25h256@2 {
#address-cells = <0x00000001>;
#size-cells = <0x00000001>;
compatible = "mr25h256";
#m25p,fast-read = <0x00000001>;
spi-max-frequency = <0x03b9aca0>;
reg = <0x00000002>;
partition@0 {
label = "uboot_env";
reg = <0x00000000 0x00008000>;
};
};
Last edited:
Hi all. Great content and lots of learning by reading through these thread. Special thanks to Fohdeesha for starting it!
What would be considered a reasonable price for the 6450-24p/7150-24p/7250-24p switches in 2023? The prices seem to be all over the place on eBay.
I am in the market for an ICX7150-24P. However, listing price for those seems to be between $500-$1200. I have been keeping an eye using the "Sold" prices as reference but I am not finding anything close to that range (200-400). One seller on eBay would not budge on less than $600 before shipping. What are people paying nowadays? What would you consider a deal?
I currently have 2 ICX7150-C12Ps that I've been running for a couple years and looking to consolidate into a single, ideally fanless (or as quiet as possible) low power switch.
Questions I have for all of you experts. I have not seen any recent answers to these and my searching didn't yield any recent results so thought I'd ask to gauge the situation at this point in time, especially with the current inflation.
1. Are the 6450s worth buying in 2023? Would $150-200 be a good deal for one?
2. I have been able to find a 7250-24p for almost same price as a 7150-24p. However, the noise (~42-44 dB with the stock fans) and power consumption (~50w) idle make me hesitate. How loud are they? Is it worth paying 4x for a 7250-24p (EOLd now) compared to a 6450-24p which has been EOLd for quite sometime but at least offers some savings upfront?
3. Is there a difference between the Brocade branded 7250 and the Ruckus branded ones?
4. If anybody has a 7150-24p that they are willing to part with for a reasonable price, I would be interested. I may be open to also partial trades.
I only have about 4 PoE devices at this point in time and not heavily invested in the 10GB ecosystem but would like to prep and expand for future needs.
Thank you in advance.
What would be considered a reasonable price for the 6450-24p/7150-24p/7250-24p switches in 2023? The prices seem to be all over the place on eBay.
I am in the market for an ICX7150-24P. However, listing price for those seems to be between $500-$1200. I have been keeping an eye using the "Sold" prices as reference but I am not finding anything close to that range (200-400). One seller on eBay would not budge on less than $600 before shipping. What are people paying nowadays? What would you consider a deal?
I currently have 2 ICX7150-C12Ps that I've been running for a couple years and looking to consolidate into a single, ideally fanless (or as quiet as possible) low power switch.
Questions I have for all of you experts. I have not seen any recent answers to these and my searching didn't yield any recent results so thought I'd ask to gauge the situation at this point in time, especially with the current inflation.
1. Are the 6450s worth buying in 2023? Would $150-200 be a good deal for one?
2. I have been able to find a 7250-24p for almost same price as a 7150-24p. However, the noise (~42-44 dB with the stock fans) and power consumption (~50w) idle make me hesitate. How loud are they? Is it worth paying 4x for a 7250-24p (EOLd now) compared to a 6450-24p which has been EOLd for quite sometime but at least offers some savings upfront?
3. Is there a difference between the Brocade branded 7250 and the Ruckus branded ones?
4. If anybody has a 7150-24p that they are willing to part with for a reasonable price, I would be interested. I may be open to also partial trades.
I only have about 4 PoE devices at this point in time and not heavily invested in the 10GB ecosystem but would like to prep and expand for future needs.
Thank you in advance.
The 7250-24P is *not* quiet, although it's nowhere near as loud as most enterprise 10Gb switches. If you keep the total power consumption low (having only 4 PoE devices will help there) the fan will stay at its lowest speed, but it won't shut off.
One thing to consider: if you consolidate to a single switch, you have no redundancy. One of the benefits of using a stack of 7150-C12Ps is that you can have built-in redundancy with only the time required to move cables from one unit to another. I did that until I ran out of ports (with 50% overhead), so now I have a stacked pair of 7250-24Ps in the same situation.
One thing to consider: if you consolidate to a single switch, you have no redundancy. One of the benefits of using a stack of 7150-C12Ps is that you can have built-in redundancy with only the time required to move cables from one unit to another. I did that until I ran out of ports (with 50% overhead), so now I have a stacked pair of 7250-24Ps in the same situation.
Depends on your use case. IPv4? Yeah. IPv6? Maybe. Prefix delegation, SLAAC? No, not a good choice.
I got a 48p for $130 shipped. I later showed a buddy one for $90 on ebay. $150 seems too high.
Thank you. Would the noise be noticeable say in a living room or bedroom closet? What are the best recommended fans at this point in time? Is it still the Sunons? Is it worth going down that route? How much would the noise levels drop? Noise/power consumption is the reason why I'm tempted by the 6450 but would prefer a switch that is continuing to receive updates for as long as possible.
Good point regarding redundancy. The issue that I have though is that they didn't come with rack ears and I have limited rack space
so can't stack them as they are. The rack mounts seem to always be stupidly expensive and for the C12Ps, hard to find.I don't have a need for IPv6 capabilities at this point.
Wow, your numbers are quite low compared to what I'm seeing . The original asking price for 6450-24p was $250 from a local seller. I thought I would be getting a deal for $150
. Why are they so overpriced still? Would $600 for a used 7150-24p be too much? What about a 7250-24p?The 7250-24P, with a small number of PoE devices and *no* SFP+ modules, would be OK in a closet, not OK in living space. As soon as you plug in SFP+ modules, the fans speed up and the noise increases substantially.
I have 3d-printed rack ears for three of my C12Ps, they work fine and are much less expensive than the Ruckus-branded ears.
I have 3d-printed rack ears for three of my C12Ps, they work fine and are much less expensive than the Ruckus-branded ears.
There is a current EBay auction for lots of 6450-48p from a recycler with a BuyItNow price of $120 with shipping. They also take offers. My offer of $105 was immediately accepted, indicating there is likely be room for lower offers. Given this, I'd say $100 shipped is the current going price for 6450's on EBay. The unit I received unit was obviously used, but in good overall condition.
There seems to be another recycler offering 6450-48 (no POE) for a BIN price of $105 with offers accepted. So again, I'd say $100 shipped is the current going price for non-poe units too.
You can also get 6610-48p in the same $100 shipped price range (or lower) if you are patient at all.
No IPv6? Shame
Brocade ICX6450-48P 48x 1Gb 4x 1/10 Gb Ports POE+ Switch 80-1005998-04 | eBay - Dedicated Networks, where I bought mine, at $120
Brocade ICX6450-48P 48-Port PoE Switch! No Reserve! Tested/Warranty included | eBay - Another link at $130 total