Posted on 29 Nov, 2018, in Uncategorized
Hi,I am doing some testing with a H320, vSZ-H version 3.6.0.0.510, AP firmware 3.6.0.0.771, specifically the DHCP/NAT on the AP feature.I have it working fine over the WiFi, I have set up the DHCP pool attached to a VLAN (11), and then an SSID also on that VLAN, when I connect I get DHCP from the AP and connection NAT’d out to the internet. No issues.However, if I configure the physical LAN ports on the H320 to be access ports on the same VLAN (11), I do not get DHCP from the AP, I get nothing. I have configured the ports as access ports on another VLAN (200) that does exist on our local network and that passes through fine and I get DHCP from our DHCP server on VLAN 200, so VLAN passthrough seems to be working fine. VLAN 11 does not exist anywhere else on our network apart from the AP.Is it possible to get DHCP from the AP to a device using the LAN ports?Thanks,
Posted on 28 Nov, 2018, in Uncategorized
hi,i’m having issues with new management IP/VLAN change with ICX switches. It’s a large manufacturing, all well spread out. I’ve “inherited” a substantional working ICX installation with multiple switches. Pure L2 (all switching licenses). L3 (old mgmt and customer traffic) is done on Palo Alto FW and Cisco IOS router (new mgmt)topology: core stack of ICX7450-s (connecting aggregation switchstacks, few servers, PA firewall, L3VPN router and few access switches that are in its building).2 separate aggregation switching stacks (one 7450 and one 7250, separate buildings). Each stack is connected to the core with 2x10G (LAG). They are not connected to each other.around ~15 ICX6430-s as access switches. they are connecting to one of the aggregation layer switches (but only one of the stacks). uplinks to aggr are mostly 1G fiber, many of them are using 2x1G LAGthere are few non ICX L2 switches too as access switches (few HP/Aruba 2530G-s, two cisco 3650-s)Now, i have to change management vlan and IP addressing. New management is originating from L3VPN router (Cisco IOS 892): STP is disabled, physical untagged port on both sides (core 7450 and l3vpn router). I see router IP in Core switch ARP table and switch mac/IP on router ARP table, but cannot ping each other.Strangely enough, few switches (including one HP) behind core 7450 itself are working okay, so VLAN spanning is allright. i can access them over L3VPN and are under new mgmt.Also, everything behind one aggregation switch 7450 (and aggr 7450 itself) are also working okay.But, with same config (besides unique IP addressing), second aggregation stack switch 7250 itself and anything behind it: no go. Also, i’m seeing 7250 MAC and IP in l3vpn router ARP table, but no traffic flow. all core and aggre switches are running Version:10.1.06T215 image. Uptime is around 130 days.vlan config (on all switches) is all very simple:unique IP address from that subnet andvlan 510 name newmgmt by port tagged ethe xxx to xxxx no spanning-tree management-vlan default-gateway x.x.x.x 1only exception is core switch, where there is also one untagged port towards cisco router.they are in default mstp 0 instance (created by adding vlan)As soon as i change back old IP/managment vlan, management works. The kick here is old MSTP config. All vlans on core switches have “no spanning tree” under their config, but MSTP has few manually added instances (old management vlan is instance 2, and instances are persistent of other switches). I really-really don’t want to touch old MSTP config, as most probably any change will bring down the whole network (have bad experience). I personally hate STP and try to avoid it like fire, but it’s already configured.So, what am i doing wrong? I’m not that new in networking, i’m managing (as Service Provider) thousands of devices (mostly IOS/Junos/Aruba though) for many good years, but now i’ve run out of ideas. I’m presuming something with MSTP config, but i see all ports in forwarding stateshow mstp under not working 7250/7450 as well as working 7450 shows every port designate/forwarding state (and core 7450 uplink ports as root on aggr switches) in instance 0.Or is this some sorf of software bug. I don’t think the switches (purchased by customer) are covered by additional support services, though they might be covered under warranty.
Posted on 27 Nov, 2018, in Uncategorized
Hi, All!I got second R710 on secondary market. I already have same model router – and it powers from Netgear POE+ switch without any issues during last 3 years….But when i try to power new one with same cable – it doesnt start at all.When i insert DC 12V power – it works perfect, but i need POE.How can i check – is it software issue or hardware and i need to return item back?
Posted on 22 Nov, 2018, in Uncategorized
ICX does not use libssh library. ICX is NOT vulnerable to CVE-2018-10933.
Posted on 21 Nov, 2018, in Uncategorized
I have a simple network, with three vlans (Data, Voice, and Video). I’ve entered all three wireless networks into my Ruckus Cloud account, and assigned each to the proper vlan number on network (20, 30, and 40). The ICX ports that I’m plugging my AP’s into are set for tagged ports and the AP ports are tagged in each of the three vlans. There is a DHCP server on the lowest numbered vlan (20), but the AP’s (R510’s) never get an IP address, even though the DHCP server is on the local vlan 20. If I put the AP’s on a public VLAN they go to the cloud, and grab their configs, which should add the three vlans, and then drops from the cloud once the configs are downloaded (I’m assuming because that vlan ID isn’t in the AP’s). But moving them back to the tagged ports, they never get an IP address (based on the power led). Can anyone shed some light on the proper way to get AP’s added to the cloud when all you have are three tagged vlans?
Posted on 19 Nov, 2018, in Uncategorized
Hi Folks,I’m very new at this, and Ethernet is not in my “day job”. I just got my first managed switch, a used/surplus ICX6430-24. I used it to upgrade a un-managed 10/100 switch that had been in place for 10+ years and was hoping to enjoy the benefits of manageability and 1Gig speeds. So far, its just given me headaches.I’ve tried to read as much as I can before posting this, but I’m just not well versed in the newer ethernet standards to keep up and understand all of it, so I’m hoping someone here might be able to help.My 6430-24 is running the ICX64S08030sa code image.I’ve got 3 DirecTV devices (HR-24, HR-22, H-23) all connected to this 6430-24 for Multi-Room Viewing (streaming a recorded show off of one receiver over to the other). When using the 10/100 switch that’s been in place for years, everything works fine. As soon as I swapped in the 6430-24 things went wrong. Now the Multi-Room viewing is basically unwatchable as I’ll get 3 to 5 seconds of picture with audio, then a 30 to 60 second freeze, and then some picture with no audio. Then it syncs up for about 3 to 5 seconds, and the cycle repeats.I’m assuming I’m loosing ethernet frames somewhere and that the DirecTV receivers don’t ask for re-transmission of the lost frames due to performance reasons. I’m looking for some help in 6430-24 tuning to see if I can fix this up. My PC’s, DVD Players, X-Box 360, and Wii can all stream Netflix, Amazon Video, and YouTube just fine, so what ever the issue is its just affecting the DirectTV receivers. Things I’ve tried so far (none of which have made a difference)Reset the 6430-24 switch to factory defaults and loaded latest firmware (8.0.30sa)Locked the ports to 100 Full duplex for the 3 ports connected to the DirectTV ReceiversEnabled 802.1q rapid spanning tree and designated the 3 ports connected to the DirecTV receivers as Admin-Edge-Ports to avoid any spanning tree learning (since the HR-22 has a built in switch in it)Moved the 3 DirecTV ports on the switch into the Highest QOS level (qos6).Moved all other ports into the lowest QOS level (qos0).Increased the global buffers and queue descriptorsIncreased the qos6 level’s buffers and queue descriptorsSwitched into Fully Synchronous Flow Control (which disabled the buffer tuning in steps 5 and 6 above)Verified that the 3 ports connected to the DirecTV receivers are not generating any errors.Run the built in TDR functionality of the switch on all 3 DirecTV connected ports. No cable faults were found.Switched to different ports on the 6430-24.Run a very long Cat6 patch cable directly from the 6430 to the DirecTV boxes to bypass all of my patch panels, in wall wiring, etc.I’m running Cat5e inside the walls, with Cat5e keystone jacks, or patch panels (depending on the end of the in wall cable) and Cat6 Patch Cables. The same cables work without issue if I switch back to the no name 10/100 switch (but I do recognize that 1G uses all 4 pairs, and 10/100 only uses 2 pairs).I don’t think I’m doing anything “exotic” with the 6430 that would put a high load on it causing it to drop frames. Memory is only 61% used, and the CPU utilization only shows 1%.Does anyone have any experience on running media streaming applications over 6430 switches that could point me in right direction on how to “tune up” or configure them for best performance? I’ll happily supply any needed data/outputs if requested.Thanks in advance! –Brian
Posted on 19 Nov, 2018, in Uncategorized
Hello,I have a bunch of Brocade switches ICX 7450 (firmware 08.0.3k). The problem is that I have a lot of logs from flapping ports. The ports commes up and down continuosly, but I don’t have from user perspective, any issue.Is that a logging problem? How does it verify if a port is up or down?How can I know if the port had comme down trully?When I check the switch, the port is up. But I still have the logs 🙁
Posted on 15 Nov, 2018, in Uncategorized
We have a Ruckus ICX 7150-48ZP connected a server (eth 1/1/1), and two Cisco switches A and B (eth 1/1/47 and 1/1/48). We want to configure the Ruckus ICX 7150 switch only to achieve following requirements, please advice the configuration of ICX 7150, Thanks in advance!
1. All units ( connected to Cisco switches A and B ) are possible to communicate with the server (eth 1/1/1 of Ruckus) 2. The units of Cisco switch A and Cisco switch B can not communicateThanks for any answer, seems the PVLAN can be applied, but unfortunately it required configure two Cisco switch too.
Posted on 13 Nov, 2018, in Uncategorized
High CPU Troubleshooting Guide for Campus / FastIron Products
Posted on 12 Nov, 2018, in Uncategorized
Hello, first of all i want to say i am a newbie at this chapter with routers but I have a problem. I have a ruckus r700 and whe. I plug The internet cable its not working, but The others working perfextly, its something wrong with The cabble? Because when i connect the router elsewhere its working… Have a good Day!
Posted on 12 Nov, 2018, in Uncategorized
Assuming ICX with dhcp ip behind Firewall, in order for ICX 7150 (ver 8.0.80ca) with sw registrar feature) to communicate with vSZ 5.0 controller, what protocol ports need to be allowed in firewall?
Posted on 11 Nov, 2018, in Uncategorized
After upgrading icx 7750 from 08.0.40 to 08.0.80 My multiple DHCP servers is malfunctioning. A PC can get a lease, but a iPhone or IP phone cannot get a lease. What can be wrong?
Posted on 09 Nov, 2018, in Uncategorized
See details in the Release Notes and Getting Started Guide for ICX switch count per SZ type cluster.
Posted on 03 Nov, 2018, in Uncategorized
I am not too savvy on the actual administration of networking devices, so I’m hoping for some advice on how to configure my network securely.
I have a gateway router which connects to a Ruckus ICX switch, which in turn has two Ruckus Unleashed APs connected to it.
Ideally, I’d like to leverage VLANs to segment the network (applying ACLs). My question is, what kind of configuration do I need to implement so that I can manage the APs from a management VLAN, but have the AP clients restricted from accessing the AP console or web UI?
Initially, I thought I’d just be able to assign the switch port to a tagged VLAN and set the AP to use that same VLAN (AP config calls this Access VLAN), but that didn’t work. I tried untagged as well, but then I can’t reach the AP from the management VLAN.
Any help or advice would be greatly appreciated!
Posted on 02 Nov, 2018, in Uncategorized
My customer using ICX7150-24P as Access switch and core switch, the connection between Core and access switch are fiber optic and UTP cable as the uplink. In between fiber and UTP cable, there is fiber media converter. My question is, did Ruckus required any special type of media converter?This is due, the access switch down for too long. even after troubleshoot the cable, switch still cannot up normally. The switch can power up but cannot be detected in the network. Last option we try to change the mode at fiber converter from auto to force.Did anyone have any idea how this issue can happened. Appreciate if anyone can explain further on this.