|
BaseballPCHiker posted:Just to pile on, Im just a Cisco guy, but for Cisco we'd have dedicated stacking cables in the back of the switches, not using SFP or copper ports for that. You can use HP IRF technology to connect and virtualize A5500 EI switches or A5500 SI switches into a virtual switch called an “IRF fabric” or “IRF virtual device” for flattened network topology, and high availability, scalability, and manageability. You can do a LAG across two different physical switches so I would call it a 'stack'. There are 'stacking ports' but they seem to just be 10GBe interfaces on the rear, it's not a dedicated stacking cable like you mention you'd see with other vendors. The newer Aruba stuff seems to work the same way with their VRF or whatever they call it (we have two closets converted over to the Aruba 2650(?)) We've been converting some closets over to the HPE 5130's, which are newer Comwares, which we have been getting as warranty replacements. 
|
#
?
Apr 12, 2021 14:47
|
|
|
|
| # ? Apr 16, 2024 18:27 |
|
|
Thanks Ants posted:I think a pair of Aruba CX 6300 24 port SFP+ switches will do for your 'core', then just use CX 6100s for your copper access. This is kind of where I was going, trying to figure out why we need it to be all one stack. We are using Aruba Central now, actually. And guess why we can't replace the fan in switch #2 that's giving us errors! Because we have to bring the whole thing down.
|
|
#
?
Apr 12, 2021 14:49
|
|
. Also I don't think trying to stack them all together is worth doing - you won't want to do maintenance on them all at the same time, you won't want to reboot your main core just because your secondary ESXi cluster needs a firmware update. Use something like NetEdit or Aruba Central for management.
|
Bob Morales posted:20M and maybe 300M? Assuming they're 1Gb the 20M runs could be done with CAT6 but it's kinda pointless if you've also got 300M runs. Out of interest, what is the location of this network? Like just an office building or an off-shore rig? Asking because the only times I've had to deploy networks with that variety of ranges was on a rig (Specifically a rig that connects to another rig, shortest was 10M between floors of LQ, longest was 250M over the umbilical to the connected rig, also had microwave backup as well as a hilarious RF packet-radio tertiary backup that could do maybe 150KB/s).
|
|
#
?
Apr 12, 2021 15:02
|
|
|
Pile Of Garbage posted:Assuming they're 1Gb the 20M runs could be done with CAT6 but it's kinda pointless if you've also got 300M runs. Office building
|
|
#
?
Apr 12, 2021 15:20
|
|
|
Pile Of Garbage posted:6500 (Are they even a thing anymore?) From what I can tell they were replaced by the 6800 series, and those in turn were replaced by the 9600. If you want more ports than a 9600, you're looking at a Nexus model.
|
|
#
?
Apr 12, 2021 15:33
|
|
|
Bob Morales posted:Office building Given your ranges I assume your core is in the MDF on the ground or sub-basement. You'd potentially recoup cable runs by moving it to the IDF of the middle floor of those you service (Like with my previous example which was floors 8-11 so they put core on 10).
|
|
#
?
Apr 12, 2021 15:43
|
|
|
You can also just buy Nexus 9300 fibre and copper pairs and vPC them but that's extra management overhead vs stacking. We paid less than £8k per switch for our 93180s, and bought the 10/25/40gbit SFPs and full copper ones.
|
|
#
?
Apr 12, 2021 18:10
|
|
|
So I'm going to be starting a new job shortly that will make use of Aruba hardware (specifically their mobility controllers and possibly ClearPass), which I don't have any experience on. Any good literature out there to familiarize myself with them, or am I stuck with the company's website? \/\/\/ EDIT: Thanks, Thanks Ants. Jedi425 fucked around with this message at 19:57 on Apr 12, 2021 |
|
#
?
Apr 12, 2021 18:32
|
|
|
Just look at stuff on here, and then look at the personal websites of the people doing the presentations https://www.youtube.com/channel/UCFJCnuXFGfEbwEzfcgU_ERQ
|
|
#
?
Apr 12, 2021 19:13
|
|
|
Random design-ish level question. I am replacing a bunch of Meraki APs across a handful of sites. For guest wireless access, we can have that firewalled off via the Meraki APs themselves, but the replacement APs we are going with don't have a feature like that. Looking back at my history, we get about 2500 unique devices/month on these guest SSIDs. Should I be doing a smaller VLAN (isolated via firewall) per site, something like a /24 or /23 depending on site size, or just stretching a larger VLAN around (like a /20) and trusting that the APs Client Isolation and broadcast filtering won't let me down? These are all non company owned devices. So personal employee devices for non work use, guest meeting access, public spaces, bla bla bla...
|
|
#
?
May 17, 2021 16:18
|
|
|
How many do you get in concurrently? Generically, I would size it to accommodate anticipated peak + burst, and size DHCP lease timings to try and minimize cruft for efficient utilization. Assuming you have the routing resources for it a smaller VLAN that routes out from the site with a local controller would seem reasonable, instead of trying to filter mdns/broadcast/whatever. IMO anyway.
|
|
#
?
May 17, 2021 18:22
|
|
|
Partycat posted:How many do you get in concurrently? Generically, I would size it to accommodate anticipated peak + burst, and size DHCP lease timings to try and minimize cruft for efficient utilization. Assuming you have the routing resources for it a smaller VLAN that routes out from the site with a local controller would seem reasonable, instead of trying to filter mdns/broadcast/whatever. IMO anyway. I would guess concurrent to be around 250, but poo poo keeps changing via COVID fun. I guess I could start smaller and just expand if needed, while keeping the DHCP lease time to like 8 hours. No controller for these APs (Juniper/Mist), all cloud based. Sites are all connected via dark fiber, so I am routing (or just stretching this VLAN) back to one firewall cluster. Edit: Gonna test this out with a /23 and 8 hour lease, see what happens. Moey fucked around with this message at 19:49 on May 17, 2021 |
|
#
?
May 17, 2021 19:36
|
|
|
With wireless and lightweight AP's there is no scaling/performance issue for large subnets. The scaling limits come from number of devices per AP. Stadiums and large public even spaces etc get away with flat /16's and of course use client isolation. I would say plan your subnet's to minimize addresses wasted per controller. If you have a single controller for a region and expect ~3000 clients total at the all the offices etc. Then a /20 is a good size. If you have a remote site that requires a dedicated controller, that will have 20 people in the office, a /24 should be fine. (I don't like going smaller then /24 for user subnets). Just avoid doing like 32 /29's or a /24 per floor or whatever.
|
|
#
?
May 18, 2021 07:34
|
|
|
What is a BGP EVPN and why might I ever care. And how might stretching a single subnet across DCs work and why would you ever want to do that. Methanar fucked around with this message at 23:39 on May 18, 2021 |
|
#
?
May 18, 2021 23:35
|
|
|
If your app is poorly designed you might want to stretch a subnet across locations. Like if the only way of keeping it online is to use VMware HA rather than the app being clustered that can deal with nodes going away.
|
|
#
?
May 18, 2021 23:57
|
|
|
Ask me about supporting physical security companies that have database applications that can only be connected to by thick clients (terminal servers are NOT SUPPORTED DUHHHH) that do a literal broadcast to find the database. Actually don't ask me because it resulted in a lot of drinking with my previous architect.
|
|
#
?
May 18, 2021 23:59
|
|
|
Methanar posted:What is a BGP EVPN and why might I ever care. You don't want that. But it is a potential routed fix for dumb "business critical apps" that can't handle not being layer2 adjacent so you can still have some kind of DR. It won't work well, and will still be a huge outage if anything ever happens, but it will check a box for an audit about DR.
|
|
#
?
May 20, 2021 15:53
|
|
|
Supply chain issues with Cisco switches is eating my rear end. Meraki or Cisco, maybe 4 months out? So I'm setting up a stack of old rear end 3560-X series switches for a new office because we're bringing everyone back, yipee.
|
|
#
?
May 20, 2021 19:23
|
|
|
Yeah we've been given a 60 day lead time for 50 APs. Going to see if I can get our account manager to sort out discounts in exchange for picking the next product up the range.
|
|
#
?
May 20, 2021 21:50
|
|
|
At least the 3560's have hardware warranty until October which I just had to open a TAC case to use after not booting these switches up in years.
|
|
#
?
May 20, 2021 21:53
|
|
|
What is this arrow P icon supposed to represent, other than Cisco 9k? VXLAN? https://www.cisco.com/c/dam/en/us/p...07-733228_2.jpg
|
|
#
?
May 21, 2021 00:53
|
|
|
GreenNight posted:Supply chain issues with Cisco switches is eating my rear end. Meraki or Cisco, maybe 4 months out? So I'm setting up a stack of old rear end 3560-X series switches for a new office because we're bringing everyone back, yipee. Yeah I'm on a project right now where they still haven't finalized the POs, and they think we'll have the hardware on site in 4-8 weeks from when they do. I'm guessing they'll be lucky to see these 9300s this side of Thanksgiving.
|
|
#
?
May 21, 2021 02:50
|
|
|
More of a wireless question, but this is the only networking thread. I'm covering a couple of rooms at a facility separated by about a 15 foot outdoor breezeway. What's strange about it is one of these rooms has an odd decorating choice. Both have suspended ceilings, but instead of acoustic tiles the squares are embossed galvanized steel sheet metal. That has to ratchet up the reflectivity up to 11. Luckily there's nothing above that room to worry with, but I'm curious to see if anyone has seen something similar and how to account for it if necessary. The customer typically likes the AP's above the ceiling grid, but that's clearly not going to work in this case, so I'm thinking wall mounting for aesthetic purposes as opposed to using grid clips.
|
|
#
?
May 24, 2021 16:25
|
|
|
Or buy APs with antenna connectors and locate a little antenna puck on the ceiling. This will probably cost double what just fitting an AP in a visible location would run to, though.
|
|
#
?
May 24, 2021 16:27
|
|
|
Thanks Ants posted:Or buy APs with antenna connectors and locate a little antenna puck on the ceiling. This will probably cost double what just fitting an AP in a visible location would run to, though. Yeah that or a patch antenna on the wall facing into the space if it's reasonable for the size, opposite the breezeway with supporting coverage from there? That avoids touching tiles you'd have to perhaps replace if they're damaged.
|
|
#
?
May 24, 2021 20:29
|
|
|
Does any vendor make a small desktop switch similar in dimensions to the Cisco 2960/3560-CX that has PoE, 16xGe and 4x10Gb SFP ports and is passively cooled? I'm thinking of doing some 10Gb on my stupidly over-engineered home network but am having trouble finding something that is smaller than 1RU. I'd prefer Cisco but am willing to explore other vendors. My current setup consists of a Cisco 897VA, FortiGate 60E-POE, FortiAP 223E and a Cisco Catalyst 2960-CX. My PC has a quad-port gigabit NIC so between that, my Netgear ReadyNAS 316 and IBM x3550 M2 server it's all teams teams teams. Thanks in advance, appreciate any suggestions no matter how outlandish. Edit: a pic of my current setup if anyone is interested. Pile Of Garbage fucked around with this message at 11:46 on Jul 17, 2021 |
|
#
?
Jul 17, 2021 11:41
|
|
|
The 24 port variant of the Catalyst 1000 is passive. C1000-24P-4X-L has a 'Y' in the fanless column https://www.cisco.com/c/en/us/products/collateral/switches/catalyst-1000-series-switches/nb-06-cat1k-ser-switch-ds-cte-en.html Edit: Ignore, didn't see the smaller dimensions requirement. The Juniper EX2300-C might be an option, only has 2x SFP+ ports though. Thanks Ants fucked around with this message at 22:40 on Jul 17, 2021 |
|
#
?
Jul 17, 2021 22:36
|
|
|
Thanks Ants posted:Edit: Ignore, didn't see the smaller dimensions requirement. The Juniper EX2300-C might be an option, only has 2x SFP+ ports though. Cheers thanks for the suggestion. I'll admit four 10Gb interfaces on a compact switch was probably a bit ambitious. I'd ideally only be using the 10Gb for iSCSI traffic so two ports would work with one to the NAS and one to my PC.
|
|
#
?
Jul 18, 2021 04:26
|
|
|
The only other thing I found was the Qnap QSW-M2116P-2T2S, which is a brand I'd have a lot of reservations about buying a switch from, and isn't fanless, but it's compact and has the 10 gig ports, though two are SFP+ and two are copper. https://www.qnap.com/en-uk/product/qsw-m2116p-2t2s
|
|
#
?
Jul 18, 2021 09:35
|
|
|
Hah, I did not know that QNAP made networking gear. Dollars to donuts it's just some re-branded kit from some random OEM.
|
|
#
?
Jul 18, 2021 15:46
|
|
|
Knowing qnap, make sure you firmware update it ASAP.
|
|
#
?
Jul 18, 2021 16:43
|
|
|
In our server room, our main switch stack is made of 2960's, and then we had a 3750 core which has been replaced by Fortiswitch (ugh but that is another post). They are mounted in a 4-post telco rack, and then we have a 48u server cabinet about 5 feet from that. That means we have about 40 cables dangling across. I at least bundled them all together so it doesn't look like complete poo poo. Started replacing cables on the patch panels with shorter ones and grouping them so no more cables on the floor. Also got the last of the computers off the floor. There are other issues in this room as well, but again, that's another post. This picture is about 25% as bad as it was.  I'd like to reduce this to like, 4 cables, so I want to buy a top of rack switch. Actually two, one fiber and one copper. I talked to our VAR, who got a networking guy on the call, and they basically quoted us: Cisco 9300 48 port 1Gb copper $3,700 Cisco 9300 24 port 10Gb SFP $10,000 $1,000 for redundant power supplies $1,200 each for stacking modules $1,000 in transceivers and cables $3,700 in SmartNet So why don't I just go over to fs.com and buy: https://www.fs.com/products/100969.html and https://www.fs.com/products/108710.html ? $1,399 and $1,149
|
|
#
?
Jul 23, 2021 13:29
|
|
|
Yeah Cisco has been telling us they've been hit hard by the chip shortages too. We just purchased 12 48-port Meraki switches with 10 gig uplinks. What's the warranty and support like for FS?
|
|
#
?
Jul 23, 2021 13:36
|
|
|
GreenNight posted:Yeah Cisco has been telling us they've been hit hard by the chip shortages too. We just purchased 12 48-port Meraki switches with 10 gig uplinks. FS actually has this in stock while the Cisco stuff is all backordered. We have been waiting like 2 months on a whole new Cisco wireless system. Don't know about FS's support. They seem to have a decent rep on Reddit (lol). At these prices I could buy spares. Edit: No coffee yet Bob Morales fucked around with this message at 14:14 on Jul 23, 2021 |
|
#
?
Jul 23, 2021 13:45
|
|
|
No, we have 20 other Meraki switches and about 60 AP's. We also have Meraki SD-WAN devices at the edge.
|
|
#
?
Jul 23, 2021 14:06
|
|
|
GreenNight posted:No, we have 20 other Meraki switches and about 60 AP's. We also have Meraki SD-WAN devices at the edge. Sorry, somehow I read that as Ubiquiti 
|
|
#
?
Jul 23, 2021 14:15
|
|
|
Pile Of Garbage posted:Does any vendor make a small desktop switch similar in dimensions to the Cisco 2960/3560-CX that has PoE, 16xGe and 4x10Gb SFP ports and is passively cooled? I'm thinking of doing some 10Gb on my stupidly over-engineered home network but am having trouble finding something that is smaller than 1RU. I'd prefer Cisco but am willing to explore other vendors. My current setup consists of a Cisco 897VA, FortiGate 60E-POE, FortiAP 223E and a Cisco Catalyst 2960-CX. My PC has a quad-port gigabit NIC so between that, my Netgear ReadyNAS 316 and IBM x3550 M2 server it's all teams teams teams. https://mikrotik.com/product/crs309_1g_8s_in 8 sfp+ ports, passive cooling. $269us. Don't expect to have huge buffers, but it does what you want for 10g. Sfp+ modules are also very heat intensive, so more ports means active cooling and larger cases. Edit: If you are ok with fans and 1u, try this: https://mikrotik.com/product/crs328_24p_4s_rm 24 poe, 4x sfp. $379. unknown fucked around with this message at 02:30 on Jul 24, 2021 |
|
#
?
Jul 24, 2021 02:25
|
|
|
Bob Morales posted:FS actually has this in stock while the Cisco stuff is all backordered. We have been waiting like 2 months on a whole new Cisco wireless system. Their support is OK. Like not the worst, but not the best. Dont expect Ubiquiti bad or Cisco (TAC back when they were good) level support. When I had to interact with them they appeared to be out of China, so I could really only get a quick response right away in the morning, otherwise it was next day.
|
|
#
?
Jul 24, 2021 02:55
|
|
|
Bob Morales posted:FS actually has this in stock while the Cisco stuff is all backordered. Do realize that FS website stock is generally lying about warehouses and levels. Pretty much everything arrives from China directly for everyone I know that has ordered from them. That being said, they do priority overnight it from there, so can't really complain too much as it can beat local distributors shipping times.
|
|
#
?
Jul 24, 2021 03:17
|
|
|
|
| # ? Apr 16, 2024 18:27 |
|
|
Bob Morales posted:In our server room, our main switch stack is made of 2960's, and then we had a 3750 core which has been replaced by Fortiswitch (ugh but that is another post). They are mounted in a 4-post telco rack, and then we have a 48u server cabinet about 5 feet from that. No suggestions but just wanna say that I've been there before. From a few years ago, installing a whole rack full of compute and storage at a customer but their core switching was in another rack:  unknown posted:https://mikrotik.com/product/crs309_1g_8s_in Cheers thanks for the suggestions!
|
|
#
?
Jul 24, 2021 11:36
|
|