Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ATT Uverse RG Bypass (0.2 BTC)

    Scheduled Pinned Locked Moved Bounties
    555 Posts 80 Posters 1.2m Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      JonH @RonRN18
      last edited by

      @RonRN18 said in ATT Uverse RG Bypass (0.2 BTC):

      In my research of AT&T, it appears that instead of having an all-in-one box that exists on the side of the house, they route the fiber to an Optical Network Terminal inside the home, which then runs to a Residential Gateway, which appears to be a WiFi router. I do not want to use a WiFi router but continue using my pfSense and my Unifi UAP-AC Pro access points placed strategically in the new house. I have read about different ways to get around this and want to make it as seamless as possible.

      My setup is probably the same as what you describe (incl UAP-ACpro inside my LAN). When the ATT gigfiber was installed I was using an SG-2440. Many have said it works w/ 1g but I had poor throughput and finally did the pfatt with netgraph. It did increase my speed but not significantly. Not close to 1g.

      So based on comments others made I upgraded my pfSense appliance and run now run an SG-5100. I get the full 1g now. The 5100 is a bit overkill for my usage but I had read mixed reviews about the 3100 and decided to go for more HP.

      I don't run a web server. I'm just a home internet user. Near as I can tell, the deal with ATT router is the NAT table (on my BG210 it is in /diagnostics menu) filling up. My system has been running for many months and that table, max of 8192, is at a whopping 77.

      I did not reload pfatt on the 5100 and instead have occasionally checked the NAT table. All is well so my advise is to try your setup w/o the bypass first and see if you can live with it.

      I disabled the ATT wifi and run their router in IP Passthru mode and altered the dhcp lease time to 99 days. My IP has not changed in the past many months.

      Good luck.

      R 1 Reply Last reply Reply Quote 0
      • R
        RonRN18 @JonH
        last edited by

        @JonH in my current setup, I have 1g service through a different ISP and while I don’t get a full 1000 Mbps, I generally see 750-850 Mbps download and 800-875 Mbps upload.

        I run about about 20-30 VMs on 3 bare-metal multi-cpu servers. I also run 5 desktops, 3 laptops, 2 tablets, 2 smartphones, 4 TVs with at least Internet connected video streaming device each. I then have about 10 SBCs (Raspberry Pis of each generation, Beaglebone, Pine64, and another “knock-off”/alternative). I have several other connected devices. I have well over 100 statically assigned IPs in my house. This is why I’m looking at bypassing AT&T’s NATting device.

        It’s my hobby, but this is one aspect I have limited experience (bypassing the RG) and finding very limited community support. I know I will eventually figure it all out, once I’ve played with it a while, I’m just trying to learn from other mistakes so I can make different mistakes, not just repeating mistakes of others.

        J F 2 Replies Last reply Reply Quote 0
        • J
          JonH @RonRN18
          last edited by

          @RonRN18 said in ATT Uverse RG Bypass (0.2 BTC):

          It’s my hobby, but this is one aspect I have limited experience (bypassing the RG) and finding very limited community support. I know I will eventually figure it all out, once I’ve played with it a while, I’m just trying to learn from other mistakes

          I get that. It wouldn't hurt to try ATT as installed and then move to pfatt if needed. When you get it all sorted out it would be nice to find out what you ended up doing.

          1 Reply Last reply Reply Quote 0
          • F
            fortillian @RonRN18
            last edited by fortillian

            @RonRN18 You should try the bypass method of cloning the ATTRG MAC address to PFSense WAN and use a switch for VLAN0 connection to the ONT. I am running PFSense baremetal on a Dell R210II directly connected to the ATT ONT through a Netgear GSS108E switch and getting a public IP. I had to reconnect the BGW210 2 times in 2019 to reauth the connection, otherwise the connection lasted through multiple server restarts over the year. Currently sitting at 85 days uptime since last reboot and haven't had to reauth in 2020 yet. When I do need to reauth, I plug in the BGW210 power and login to the Netgear switch and flip the VLANs real quick. Takes about 2 mins and most of that is waiting for the BGW210 to boot up and reauth, I could probably automate it if I had to do it enough. I also ran the same scenario in a PFSense VM in ESXI with no issues. PFATT would be nice if it was baked in and just worked with ease, and we didn't have to deal with ATT certs. But for now, this is the "easiest" bypass method.

            1 Reply Last reply Reply Quote 0
            • GPz1100G
              GPz1100
              last edited by

              The prices on ebay for the certs has really sky rocketed. I guess good 'ol supply and demand. I remember paying $20 for a nvg589 a year ago. Rooted and pulled the certs. These days they're (the certs) are going for $100+.

              I 1 Reply Last reply Reply Quote 0
              • I
                ikkuranus @GPz1100
                last edited by

                @aus why did you take down the pfatt github repo?

                F H 2 Replies Last reply Reply Quote 0
                • F
                  ffuentes @ikkuranus
                  last edited by

                  @ikkuranus

                  I was wondering the same thing. I was getting ready to do it when I couldnt find the repo anymore. :(

                  GPz1100G 1 Reply Last reply Reply Quote 0
                  • GPz1100G
                    GPz1100 @ffuentes
                    last edited by

                    Lets hope someone who still has the recent scripts can make them available.

                    A 1 Reply Last reply Reply Quote 1
                    • H
                      hfrazier @ikkuranus
                      last edited by hfrazier

                      @ikkuranus
                      I came here wondering the same thing. Was just about to try it.. It looks like there's a clone here, but is outdated according to the internet archive..

                      Edit: Maybe just use this repo
                      https://github.com/0xC0ncord/pfatt

                      A 1 Reply Last reply Reply Quote 1
                      • F
                        ffuentes
                        last edited by

                        It turns out that I have a clone from 04/19/2020 so looks like I am good to go. I would like to know what happen though...

                        1 Reply Last reply Reply Quote 0
                        • A
                          AiC0315 @GPz1100
                          last edited by

                          @GPz1100 Do you need the scripts?

                          H 1 Reply Last reply Reply Quote 0
                          • H
                            hfrazier @AiC0315
                            last edited by

                            @AiC0315 I need them too please

                            1 Reply Last reply Reply Quote 0
                            • A
                              andrewpdupuis @hfrazier
                              last edited by andrewpdupuis

                              @hfrazier since this was a public repo, do we know which is the new parent where future work should go? If he deleted/made private, there should have been a split and all the forks should have gotten reparented.

                              edit: looks like MonkWho is the new parent repo, based on the graph. Here's all the most recent updates for anyone who needs them https://github.com/MonkWho/pfatt/network

                              H 1 Reply Last reply Reply Quote 1
                              • H
                                hfrazier @andrewpdupuis
                                last edited by

                                @andrewpdupuis Ah, thanks! I had found that repo just wasn't sure if it was the latest.

                                F 1 Reply Last reply Reply Quote 0
                                • F
                                  foxide
                                  last edited by

                                  This post is deleted!
                                  1 Reply Last reply Reply Quote 0
                                  • F
                                    foxide @hfrazier
                                    last edited by

                                    @hfrazier Looks like the latest fork from that is found at https://github.com/neclimdul/pfatt

                                    1 Reply Last reply Reply Quote 0
                                    • GPz1100G
                                      GPz1100
                                      last edited by

                                      Does anyone have the zip of https://github.com/aus/pfatt/tree/supplicant ?

                                      1 Reply Last reply Reply Quote 0
                                      • MonkWhoM
                                        MonkWho
                                        last edited by MonkWho

                                        I decided to check if there were any changes to pfatt last week and found out that original is now gone and my fork became a new parent. No idea how or why.

                                        I will maintain it to the best of my abilities. I pulled some requests and done some commits to clean things up. Screwed up a little when I was uploading the supplicant branch but got it all fixed up now. I also separated OPNsense specific script into it's own file for clarity. So currently https://github.com/MonkWho/pfatt contains the latest files.

                                        @GPz1100 said in ATT Uverse RG Bypass (0.2 BTC):

                                        Does anyone have the zip of https://github.com/aus/pfatt/tree/supplicant ?

                                        A copy of it is here - https://github.com/MonkWho/pfatt/tree/supplicant. It contains most recent files. Unfortunatly this branch was not there when I originally created my fork so I had to semi-manually recreate it from a backup I had locally.

                                        G 1 Reply Last reply Reply Quote 6
                                        • G
                                          glio @MonkWho
                                          last edited by

                                          @MonkWho I just want to say thank you for carrying the torch. I just recently discovered this whole workaround thing - was getting discouraged trying to find a way to build the netgraph for my SG3100 - then found out it is included with pfsense now. Except on 2.4.5, the ng_etf package is missing! lol

                                          https://redmine.pfsense.org/issues/10463

                                          So now I must wait until 2.4.5-p1 release to be able to set this all up. Anyways, thank you for carrying on the work @aus started.

                                          A 1 Reply Last reply Reply Quote 0
                                          • A
                                            AiC0315 @glio
                                            last edited by

                                            @glio Maybe I am missing something, I am running 2.4.5 with the supplicant bypass. I did install it on an earlier version.

                                            G 1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.