I got the same message so I went into my profile and changed my email to my work email. Took maybe 10 min to update and allow me to download the firmware. I downloaded the most current ArubaOS_MAS firmware.
I am using this switch with pfsense. I understand that this is an L3 switch. However traffic shaping is more important to me. So, I will be using as Layer 2. Can someone help with Vlan tagging and untagging ports? I need to be able to do this for my access points. Thanks in advance.
I followed this guide for VLANs https://www.youtube.com/watch?v=68jY7gym5BI
When it comes to tagged and untagged you need to set the native vlan and access vlan. Native will be the default vlan and the access vlan will be all the tagged vlans on that port.
1 Like
@Rushified Thank you for your comments. I have watched that video over and over, even before I posted on here. If you have done this, can you explain for example how I would setup the below vlan with the following parameters: Vlan 10 Untagged ports 1, 2, 4, 6 Tagged port 0. Thank you
So lets say you have VLAN 10 as your tagged VLAN. You would create your switching profile with a friendly name, so lets say wifivlan. Assign it the default VLAN, in this example VLAN tag 10. Set the switch mode to trunk. Now put which VLANs are allowed on this profile using the trunk allow command, for this example iāll say 1, 3 to 11 and 100.
Create Switching Profile
interface-profile switching-profile wifivlan
access vlan 10
native vlan 10
switchport-mode trunk
trunk allowed vlan 1,3-11,100
Then follow what the video does to assign the profile to the interface re4placing the example vlan with wifivlan
This can also be done through the web interface. Iām not at a computer that can access mine right now, but can update this later with the exact steps.
If I remember all this correctlyā¦
Following the same example above, go to Configuration then Ports. Under the Switching tab you will see you switching profiles. Create a new one. Give it a name wifivlans change switching mode to trunk if its not defaulted, give the access and native vlans the number 10, put the allowed vlans to 1,3-11,100 and assign the interfaces in the interface column.
Remember to save you configuration!!!
@Rushified Thank you much. I will try it and advise. Thanks againā¦
Assuming you have only the one VLAN10 in addition to your regular LAN, and the router is on port 0, and the devices that need to be on VLAN10 are on ports 1,2,4,6:
(The following are after enable and con t. Untested. The names in ALL_CAPS are arbitrary.)
Create VLAN:
vlan 10
name MY_VLAN
exit
Switching profile for router port:
interface-profile switching-profile ROUTER_TRUNK
sw trunk
native 0
trunk allow vlan 10
exit
Switching profile for devices:
interface-profile switching-profile VLAN10_ACCESS
sw access
access 10
exit
Assign to ports:
interface gig 0/0/0
sw ROUTER_PROFILE
exit
interface-group gig VLAN10_PORTS
apply 0/0/1,0/0/2,0/0/4,0/0/6
sw VLAN10_ACCESS
exit
You might be able to apply switching profile directly to multiple ports without using an interface group; I forget. If you have consecutive ports you can use a range: 0/0/1-0/0/4.
All of the above can also be done in the web UI. If using CLI, donāt forget to write mem.
@seanho Thank you
Great guide and lots of great information. I rerolled my network stack last month and this was helpful in getting my Aruba going. Wish the VLAN data had been there at the time, but the good thing is that we have a lot of folks around that know how to do it and we were able to get sorted.
So far both the 10G and the 1G have been rock solid and I do not have any regrets making this apart of my setup.
@seanho , If I am doing this for multiple vlans, on the trunk, I assume I have to allow vlan 10, vlan20, vlan 30, etcā¦?
This is what my trunk looks like
@Etumos Thanks for the helpā¦
Feel free to ping me on discord if you need anything else. Happy to screen share and walk through it with you.
yep. You can do it all on one line:
interface-profile switching-profile ROUTER_TRUNK
trunk allow vlan 10,20,30
exit
Donāt forget to assign those VLAN interfaces in your router, and enable DHCP server on each.
@seanho Thank you very muchā¦very good help. truly appreciatedā¦
Thank you everyone for your help. I am happy to be part of this community. Everyone on here really cares and really wants to help others figure these things out. I am almost there nowā¦
2 Likes
@Rushified Thank you for your helpā¦
Not sure what the process for adding a known-to-work transceiver to the list, but I just bought an off-brand Wiitek SFP+ to RJ45 module from Amazon that works perfectly with my S2500.
Not sure if this listing will exist forever, but here it is.
The product description is:
Wiitek SFP+ to RJ45 Copper Modules, 10GBase-T Transceiver Compatible for Cisco SFP-10G-T-S, Ubiquiti, D-Link, Supermicro, Netgear, Mikrotik, Unifi (Cat 6a/7, 30-Meter)
Output of show interface transceivers:
GE0/1/0
-------
Vendor Name : Wiitek
Vendor Serial Number : WAMZ012101072
Vendor Part Number : SFP-10G-T
Aruba Certified : NO
Cable Type : 10GBASE-SR
Connector Type : LC
Wave Length : 850 nm
Here is the image version:
|Partition |: 0:0 (/dev/ud1) **Default boot**|
|Software Version|: ArubaOS 7.4.1.12 (Digitally Signed - Production Build)|
|Build number |: 72393|
|Label |: 72393|
|Built on |: Tue Sep 24 00:42:27 PDT 2019|
Iām able to get 10GBASE-T, 5GBASE-T, and 2.5GBASE-T without issue. If anyone is wondering, the switch reports the transceiver as being a 10Gb link even when 2.5/5Gb link speed is used.
Iāve ordered a Molex 74752-2301 DAC that should arrive soon. Iāve heard these work so Iāll update once I test it out. Right now my workstation connected to the Wiitek transceiver is the only 10Gb device on my network, so Iām not able to post iperf results. If that Molex DAC works Iāll have a server on the network with 10Gb that I can test against to get some performance numbers.
Update
Iāve received the Molex DAC and can confirm that it works perfectly.
3 Likes
What 10G cards are people putting in their devices? And what transceiver are you using in that card? Thanks!
Iām using hp nc523sfp cards with these (Pardon Our Interruption...). Works great. Just make sure youāve got it on both ends.
The cards are showing up in proxmox/Ubuntu and freenas. Iāve seen some issues with older bsd ādistrosā and Windows 10 though. They also get a bit toasty so if you power down and wait a minute or two they arenāt terrible,just warm. Unless they arenāt being pushed hard then theyāre fine. I also have a fan on/pointed at them and they stay cool.
1 Like