Brocade ICX Series (cheap & powerful 10gbE/40gbE switching)

Vivid5500

New Member
Nov 6, 2018
2
0
1
Has anyone found either generic rack ears that work or a cheap place to buy the Brocade ones?

I did find that the rear rack ears from Crown amps fit 2 of the 3 holes but they are over sized and need 4 rack screw spaces instead of 3.
I flirted with just buying another switch on eBay that had the ears attached if one was cheap enough. Ended up just going with the seller that has the 6450 ears listed as the ICX6450-RMK accessory kit. I think there are still some available but they are $65 with shipping.
 

fleeball

New Member
Dec 19, 2018
4
2
3
Just wanted to say thanks to fohdeesha for lots of great info. I picked up a 6610-48P with the ICX6610-PREM-LIC-SW for my homelab. Looking to setup a 40GB connection between the switch and my NAS. Do I need to purchase a 40GB specific license for this switch or does the Icx6610-10g-lic-pod license enable the 40GB ports? BTW the switch only came with the ICX6610-PREM-LIC-SW license, no cx6610-10g-lic-pod license.
 

Snorf

New Member
Nov 12, 2018
21
7
3
BC, Canada
Yes they are. I just ordered 2, S+RJ10 from Streakwave.com in the USA and they were $51/each + $10 shipping UPS Ground.

If you are in Canada Senetic.ca had the cheapest price but still more than Streakwave.

Snorf
 

Skud

Member
Jan 3, 2012
99
41
18
So in my quest to quiet my 7250 I went with the next step up from the 9k Delta VHN fan, the 13k SHN. FFB0412SHN-F00.

It’s worse than the stock 18k fans even though these are rated 5k RPM less. I’m beginning to wonder if these fans are fake or used. I got them from Amazon but when I unboxed them there was some dirt in “hard to clean” spots.

They also feel much less “substantial” than the VHNs I have. I Googled around quick to see if fake Delta fans is a thing but I didn’t get much.

Riley
 

Skud

Member
Jan 3, 2012
99
41
18
I have what may be both an odd and ill-advised request. Is there any way to tag a port with VLAN1? I have a Sophos UTM and it doesn't allow a default/untagged VLAN. Once you enable VLANs on an interface then ALL traffic gets tagged. I could (probably should) just use a different VLAN for everything, but it's just my home network and I just use VLAN1 for most things.

I haven't been able to do this via CLI since there is no "tagged" command in VLAN1, but I *can* do it via the web interface. The problem is that it doesn't stick across reboots (yes, config is saved.. :)).

Here is the web config showing that it *is* possible and configured... Port 1/1/24.

upload_2018-12-22_22-17-45.png

Here is the CLI that shows the port is tagged VLAN1. It'll run perfectly fine this way until the switch is rebooted. Then, I need to set that port again.

upload_2018-12-22_22-19-55.png


Here is the config.. Nothing shows about 1/1/24 being tagged VLAN1.

Code:
SSH@ICX7250-24P#sho run
Current configuration:
!
ver 08.0.80caT213
!
stack unit 1
  module 1 icx7250-24p-poe-port-management-module
  module 2 icx7250-sfp-plus-8port-80g-module
!
!
global-stp
!
!
!
vlan 1 name DEFAULT-VLAN by port
 router-interface ve 1
 spanning-tree 802-1w
 spanning-tree 802-1w priority 0
!
vlan 99 name iSCSI by port
 untagged ethe 1/2/6 to 1/2/8 
!
vlan 100 name Guest-VLAN by port
 tagged ethe 1/1/6 ethe 1/1/24 
!                                                                 
!
!
!
!
!
!
!
!
!
!
!
!
aaa authentication web-server default local
aaa authentication enable default local
aaa authentication login default local
enable aaa console
hostname ICX7250-24P
ip dhcp-client disable
!
no telnet server
username admin password .....
!
!                                                                 
!
!
clock summer-time
clock timezone us Eastern
!
!
ntp
 disable serve
 server 192.168.254.1
!
!
!
!
!
!
!
!
!
!
!
!
interface ethernet 1/1/1
 port-name Living Room SG300-10                                   
 spanning-tree 802-1w admin-pt2pt-mac
!
interface ethernet 1/1/2
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/3
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/4
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/5
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/6
 port-name Upstairs Unifi AP
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/7
 port-name LAN - Office
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/8                                         
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/9
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/10
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/11
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/12
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/13
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/14
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/15
 spanning-tree 802-1w admin-edge-port
!                                                                 
interface ethernet 1/1/16
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/17
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/18
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/19
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/20
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/21
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/22
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/23
 spanning-tree 802-1w admin-edge-port                             
!
interface ethernet 1/1/24
 port-name utm01
 no spanning-tree
!
interface ethernet 1/2/1
 port-name LAN - NAS01
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/2
 port-name LAN - HV01
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/3
 port-name LAN - HV02
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/4
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/5
 port-name LAN - 10g Riley
 spanning-tree 802-1w admin-edge-port                             
!
interface ethernet 1/2/6
 port-name iSCSI - HV01
!
interface ethernet 1/2/7
 port-name iSCSI - HV02
!
interface ethernet 1/2/8
 port-name iSCSI - NAS01
!
interface ve 1
 ip address 192.168.254.254 255.255.255.0
!
!
!
!
!
lldp run
!
!
!
!                                                                 
!
end
 

Skud

Member
Jan 3, 2012
99
41
18
So in my quest to quiet my 7250 I went with the next step up from the 9k Delta VHN fan, the 13k SHN. FFB0412SHN-F00.

It’s worse than the stock 18k fans even though these are rated 5k RPM less. I’m beginning to wonder if these fans are fake or used. I got them from Amazon but when I unboxed them there was some dirt in “hard to clean” spots.

They also feel much less “substantial” than the VHNs I have. I Googled around quick to see if fake Delta fans is a thing but I didn’t get much.

Riley
Well, I think I can confirm that the SHNs I got were either remarked or fake. I found some genuine SHNs in a Supermicro server I had sitting in a closet and they're definitely "different" fans. The profile and overall feel of the fans is different. Even the center hub is tapered and smaller on the genuine unit. I put then into the switch and it's *much* better now. I'd say it's half as loud as the stock fans and all the whine/buzzing of the fakes is gone, too.

Temperature increased about 4* vs the stock fans.

Here are pics of the two fans. First front/back is the fake. Second front/back are the genuine Deltas.

Fake...
IMG_1921.jpg

IMG_1922.jpg

Real..
IMG_1918.jpg


IMG_1919.jpg
 
  • Like
Reactions: fohdeesha

fohdeesha

Kaini Industries
Nov 20, 2016
1,807
1,567
113
29
fohdeesha.com
I have what may be both an odd and ill-advised request. Is there any way to tag a port with VLAN1? I have a Sophos UTM and it doesn't allow a default/untagged VLAN. Once you enable VLANs on an interface then ALL traffic gets tagged. I could (probably should) just use a different VLAN for everything, but it's just my home network and I just use VLAN1 for most things.

I haven't been able to do this via CLI since there is no "tagged" command in VLAN1, but I *can* do it via the web interface. The problem is that it doesn't stick across reboots (yes, config is saved.. :)).

Here is the web config showing that it *is* possible and configured... Port 1/1/24.

View attachment 9869

Here is the CLI that shows the port is tagged VLAN1. It'll run perfectly fine this way until the switch is rebooted. Then, I need to set that port again.

View attachment 9870


Here is the config.. Nothing shows about 1/1/24 being tagged VLAN1.

Code:
SSH@ICX7250-24P#sho run
Current configuration:
!
ver 08.0.80caT213
!
stack unit 1
  module 1 icx7250-24p-poe-port-management-module
  module 2 icx7250-sfp-plus-8port-80g-module
!
!
global-stp
!
!
!
vlan 1 name DEFAULT-VLAN by port
 router-interface ve 1
 spanning-tree 802-1w
 spanning-tree 802-1w priority 0
!
vlan 99 name iSCSI by port
 untagged ethe 1/2/6 to 1/2/8
!
vlan 100 name Guest-VLAN by port
 tagged ethe 1/1/6 ethe 1/1/24
!                                                                
!
!
!
!
!
!
!
!
!
!
!
!
aaa authentication web-server default local
aaa authentication enable default local
aaa authentication login default local
enable aaa console
hostname ICX7250-24P
ip dhcp-client disable
!
no telnet server
username admin password .....
!
!                                                                
!
!
clock summer-time
clock timezone us Eastern
!
!
ntp
 disable serve
 server 192.168.254.1
!
!
!
!
!
!
!
!
!
!
!
!
interface ethernet 1/1/1
 port-name Living Room SG300-10                                  
 spanning-tree 802-1w admin-pt2pt-mac
!
interface ethernet 1/1/2
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/3
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/4
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/5
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/6
 port-name Upstairs Unifi AP
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/7
 port-name LAN - Office
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/8                                        
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/9
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/10
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/11
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/12
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/13
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/14
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/15
 spanning-tree 802-1w admin-edge-port
!                                                                
interface ethernet 1/1/16
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/17
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/18
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/19
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/20
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/21
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/22
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/1/23
 spanning-tree 802-1w admin-edge-port                            
!
interface ethernet 1/1/24
 port-name utm01
 no spanning-tree
!
interface ethernet 1/2/1
 port-name LAN - NAS01
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/2
 port-name LAN - HV01
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/3
 port-name LAN - HV02
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/4
 spanning-tree 802-1w admin-edge-port
!
interface ethernet 1/2/5
 port-name LAN - 10g Riley
 spanning-tree 802-1w admin-edge-port                            
!
interface ethernet 1/2/6
 port-name iSCSI - HV01
!
interface ethernet 1/2/7
 port-name iSCSI - HV02
!
interface ethernet 1/2/8
 port-name iSCSI - NAS01
!
interface ve 1
 ip address 192.168.254.254 255.255.255.0
!
!
!
!
!
lldp run
!
!
!
!                                                                
!
end
you technically can't tag vlan 1. this is why I always recommend using a different VLAN for default other than 1, like vlan 10, then you can avoid using dual-mode and also doing weird stuff like this. should take like 30 seconds to move all your ports to vlan 10 instead
 

AiC

New Member
Oct 28, 2018
17
6
3
you technically can't tag vlan 1. this is why I always recommend using a different VLAN for default other than 1, like vlan 10, then you can avoid using dual-mode and also doing weird stuff like this. should take like 30 seconds to move all your ports to vlan 10 instead
Could you show how to do this? I am a complete noob at all of this. Here is my vlan config.
Port 1/1/1 is switch to pfsense
Port 1/1/24 is Ubiquiti WAP with 2 wireless networks.

Code:
PORT-VLAN 1, Name DEFAULT-VLAN, Priority level0, Spanning tree Off
 Untagged Ports: (U1/M1)   2   4   6   7   9  10  11  12  13  14  15  16
 Untagged Ports: (U1/M1)  17  18  19  20  21  22  23
 Untagged Ports: (U1/M2)   1   2   3   4
   Tagged Ports: None
   Uplink Ports: None
 DualMode Ports: (U1/M1)   1  24
 Mac-Vlan Ports: None
     Monitoring: Disabled

PORT-VLAN 20, Name IoT, Priority level0, Spanning tree Off
 Untagged Ports: (U1/M1)   3   5   8
   Tagged Ports: (U1/M1)   1  24
   Uplink Ports: None
 DualMode Ports: None
 Mac-Vlan Ports: None
     Monitoring: Disabled
 

AlphaG

Member
Jun 8, 2017
84
16
8
50
Could you show how to do this? I am a complete noob at all of this. Here is my vlan config.
Port 1/1/1 is switch to pfsense
Port 1/1/24 is Ubiquiti WAP with 2 wireless networks.

Code:
PORT-VLAN 1, Name DEFAULT-VLAN, Priority level0, Spanning tree Off
 Untagged Ports: (U1/M1)   2   4   6   7   9  10  11  12  13  14  15  16
 Untagged Ports: (U1/M1)  17  18  19  20  21  22  23
 Untagged Ports: (U1/M2)   1   2   3   4
   Tagged Ports: None
   Uplink Ports: None
 DualMode Ports: (U1/M1)   1  24
 Mac-Vlan Ports: None
     Monitoring: Disabled

PORT-VLAN 20, Name IoT, Priority level0, Spanning tree Off
 Untagged Ports: (U1/M1)   3   5   8
   Tagged Ports: (U1/M1)   1  24
   Uplink Ports: None
 DualMode Ports: None
 Mac-Vlan Ports: None
     Monitoring: Disabled
I’m sure fohdeesha has the answer, but google also appears to:

Assigning a different VLAN ID to the default VLAN
 
Last edited:

AiC

New Member
Oct 28, 2018
17
6
3
Sorry, I guess my question wasn't very clear how do I avoid using dual mode in my config?
Thanks
 

kennethn

New Member
Dec 22, 2018
1
0
1
Denmark
I have been lurking here to find a good switch with 10gbE SFP+ to replace my aging Avaya 5520-48T-PWR and finally pulled the trigger on a Brocade ICX6450-48P now I just need a couple of anyone know if Mellanox ConnectX-3 compatible transceivers works?

Also any hints to here obtain the ICX6450-10G-LIC POD and ICX6450-PREM-LIC-SW licenses to use all 4 10gbE SFP+ and the Premium Layer 3 features?
 

carbon60

New Member
Dec 17, 2018
1
1
3
I've managed to read through all 59 pages of this thread so far and learnt a lot, it took a while but it was worthwhile.

I'm still unsure as to which managed switch to get but as a result of this thread I'm considering switches that I would never have considered before.
 
  • Like
Reactions: fohdeesha