Help us make the Firewalla Switch
Pinned
We are getting closer to building our first Firewalla Switch! To get us moving faster, please fill out this survey: https://forms.gle/iuCZGmchSshjsTkb7
(By answering this survey, you will be automatically subscribed to Firewalla Newsletters)
---
The Spec is pending and needs your requirements
-
I just took the survey but ide like to put my thoughts here as well after seeing the options on the survey. I hope the firewalla team will take the following input into consideration. When trying to decide what switch configurations to bring to market, you should be first thinking about what is NEEDED, for complete Firewalla ecosystem integration. Here's what I mean by that. Those of us who have purchased the Firewalla Gold Pro, AP7D & AP7C, did so for 10G connectivity. So right off the bat. I would need a switch that has x5 10G RJ45 to keep my 10G network. Also would need PoE+ for the AP7C. Currently I use a 10G PoE injector for that but the ports still apply. Then obviously if a person has a complete 10G foundation as a core network, then we obviously have devices capable of 10G as well. I also tend to LAG my 10G ports because when buying 10G nics for devices, they usually come in pairs and are SFP+. At least the ones that are well-known, work well, and are CHEAP on eBay second hand. Saying that, I currently use both 10G rj45 as well as SFP+ fiber for both my devices as well as switch to switch trunks. Now saying that. You really only have one good option to cover your current ecosystem, so that your current customers can continue to fully utilize the gear that they have purchased from you (Firewalla). You need a lower end switch, for those who use the 1G and 2.5G versions of firewalla routers, with maybe a few 10G sprinkled in for future expansion. I would suggest a 24port switch, PoE++, 20 ports 1G & 2.5G, 4 ports 10G RJ45. For those of us who have 10G networks use Gold Pro and multiple AP7s, you need a high end switch-- 24 ports, PoE+, 16 ports are all speed rj45 1G, 2.5G , 5G, 10G and the other 8 ports SFP+ . These two switches would cover 99% of users both current and new. There may be a few edge cases where someone needs 10G ports with PoE++ or +++ but I think that's more of an edge case and PoE++ would only be needed for people not running firewalla AP7s. My point is, think about what people have purchased in your CURRENT ecosystem, and make sure you are releasing options that cover YOUR CURRENT ecosystem. Maybe I'm way off and IM the edge case, but if you have people purchasing GOLD PRO and multiple AP7, then they are building out a 10G network and need a switch that supports all the CORE 10G connections, as well as the 10G devices. Maybe even make another survey asking people if they are building out a 10G network and if so, how many core networking devices need 10G and how many end devices need 10G. Then also ask if building out a 1G or 2.5G network, how many core networking devices do you have and how many end devices. This will give you an idea what better to do. The PoE part is easy, PoE+ powers your AP7C, as well as 90 to 95% of what home users would be using for security cameras, smart devices , etc .. So with that, you should be able to cover 99% of firewalla customers needs
-
Thank you all for answering the survey. We are going to investigate whether we can bring these two popularly requested models.
- 8x10Gbit + 3x10Gbit SFP+ PoE Switch
- and 8x2.5Gbit (likely no PoE)
There are still some new hurdles, such as DDR memory and EMMC shortages (thanks to AI), on the pricing part. We will keep you all updated.
-
We are shooting for pre-order before summer (this is just a guess).
The Switch will be "white label" units (existing unit from ODM) with our software, so the process can be fast once we negotiate a deal. Will keep everyone updated as soon as we have more concrete news.
We are pretty excited for sure
-
definitely agree there needs to be rackmount ears available but if not, as long as it has mounting holes for the brackets then there's a bunch of third party options on Amazon... I did this for a TP link switch I purchased that had the holes but didn't come with the rackmount brackets ... anyways ... I hope firewalla considers throwing a few extra ports on those SKUS... 13 ports and 8 ports is not enough in my humble honest opinion....I run ethernet to everything that supports it because wifi interference has become a real thing in my neighborhood... also I have like 120 connected devices on my LAN... I would hope y'all consider at least 16ports on each model... and to keep cost down, not all ports have to be the full 10g or 2.5g .... but having those ports is a must; at least with 16 ports, it would be enough for most people to use it as a core switch, connected all other switches back to the firewalla.... but that means enough ports for internet in to the switch , internet out to APs, internet out to access switches on the edge, and internet to any critical devices that either are 10g capable or could be a potential attack surfaces (Homelab server is good example)...
-
Re: Form factor
I completely understand. My needs like some others is on the higher end in terms of ports. I understand you have to think about market size and all that. I just thought a good compromise would be if I could fit two side by side in my networking cabinet. If I understand the white label terminology correctly these are like demo units and the final form factor would be different?
If thats the case, I only ask that you consider the potential of putting two side by side as an option if possible. If it's not, that's cool. I understand :).
-
This is exciting news. I am certain to purchase 2 of these units mounted next to my Gold at home for running Ethernet to other rooms in my house.
The challenge will be that 4 other rooms in my house have 4 port Netgear switches and I want to want to run VqLAN. Will I have to purchase 4 more Firewalla units? Or will Firewalla officially document that VqLAN works with any managed switch configured with Isolated/Protected ports since all traffic through the 5 port managed switches must go through the Firewalla switch which is managing VqLAN? The 5 port managed switches would be configured by me with Isolated/Protected ports, not by Firewalla.
Also, can I have Firewalla switches without any AP7's for activating VqLAN management on my Gold Pro ports? I.e., if a Gold Ethernet port is hooked directly to a device, will that device be part of VqLAN management? Right now, I believe that Firewalla routers do not do VqLAN management unless you own an AP7 (please correct me if I am mistaken).
-
If I understand correctly the “white label” means that is an existing product from a manufacturer that makes noname products, they offering for everyone is paying to put their label on it. The Firewalla only writes the software, I mean they find local programmers in mane land or Taiwan to write the code for them….
I don’t know, correct me if I’m wrong. -
- 8x10Gbit + 3x10Gbit SFP+ PoE Switch
- and 8x2.5Gbit (likely no PoE)
Sounds good, though just plain 8x10Gbit switch would be fine for me with no SFP/PoE.
Just wondering also what is PoE output for the 10Gbit switch, would it be PoE+ or PoE++?
I would also really like for it to be rack mountable (like the Gold Pro) or at least the same/similar physical size as the Gold Pro to be able to fit in my 10" mini-rack replacing the Qnap combo 10/2.5Gbit switch I have (pic below)
-
The switch width will likely be more than "half rack wide" for sure. The 10gbit unit is going to be PoE++ (for now, unless we change unit) If PoE+ is used, likely the internal fan may be running. We are trying to work with our ODM to make the fan as silent as possible, but heat may be an issue if you load up a few PoE++ (then you may get more noise from the fan)
-
I think the majority of people using that port would be connecting at 10gb, but I still think fallback support to 1gb is important to have.
Though isn't much of the supported speed having to do with the transceiver itself? Like sfp+ ports only support 1/10g, but you can get transceiver ls that support and run at 2.5 and 5g. They still negotiate a 10gb connection for the interface with the switch itself but then run the port they have at a lower rate. So maybe switches are mostly just 10gb only? And the 1gb comes from the transceiver portion?
-
If it is a standard SFP+ port then as long as you buy the right transceiver it should work at 1.25/2.5/5/10gb for RJ45 and for Fiber transceivers something similar. Most of my transceivers i just purchased mainly 10gb so that i would not have to replace them. Just realize that power and heat is the main issue for transceivers so make sure you buy the low power RJ45 transceivers especially as they can get super hot and draw a lot more power to make the switch work more to cool itself. Fiber transceivers take less power and produce less heat. But for the home lab/network it is best to use DAC/AOC cables for short distances as they produce the least amount of heat and draw the least amount of power. The only reason the SFP+ port would not work at the multiple speeds which is usually the case in the lower end consumer switches is they chose to not buy the right chipset due to cost per port and power/heat requirements :)
-
The compatibility and quality of supported transceivers is key to maximum flexibility. The transceivers can negotiate lower transmit speeds such as Cat5e over older wiring while the SFP port also supports 10GbE DAC/AOC for shorter or non-walled runs in the same room / area. FS.com one of the more well-known suppliers for transceivers. Please do not make the ports "vendor-locked" like some Tier 1 vendors prefer. I agree with Troy above too, the "lower power" transceivers cost more but run much cooler so the end-user can choose more or less fan noise depending on thermals. Just some added thoughts.
-
Probably a bit off topic, but I'm wondering what's the advantage of using a Firewalla switch in a network utilizing AP7's with home runs to a generic managed switch and each port is configured as protected to direct all traffic to a single port connected to a Firewalla router. Therefore, all wi-fi traffic is managed by Firewalla without ability to cross ports within a switch. Same setup would have all hard-wired devices connected to same multi-port switch in a protected configuration to same Firewalla router port. I think ease of setup is probably likely but am thinking cross-network switch network communication would be protected, therefore similar.
-
I use 10Gbase-SR MM fiber modules only for sfp+ ports... since firewalla Gold pro only has RJ45 ports , it's silly to use an SFP+ RJ45 type tranceiver... just run 10gbe RJ45 from firewalla router to 10gb Rj45 port on firewalla switch?? the 10gb rj45 ports should be able to negotiate speeds 1,2.5, and 10 .. Sfp+ should be 10gb/1gb
-
What if you had two or more switches and wanted to connect them together? Wouldn't the fiver connection be useful in this context?
I'm suggesting this because it's what I"m planning to do. I've currently got 15 different things plugged into my switch. I'm planning some work that will result in six more things being plugged in. So I'd have to get two if I wanted to use firewalla.
Please sign in to leave a comment.
Comments
277 comments