PPPoE host-uniq
-
Hmm, 32B limit maybe?
I can't imagine the tag order makes any difference. The server replies with a different order here.
-
Hi,
I tried OpenWRT that send the packet in the same order of my ISP router, but I still have timeout. The ISP is obviously doing something nasty to prevent use of non-proprietary router, but packets from ISP and oWRT are identical from what I can see, do you have any suggestion?About the 32B limit, yes, I think it could be that, but Host-Uniq could be of any lenght as far as I can understand. But again, it's not an issue for me, just something weird that I found out.
Thanks again for your patience
Andrea
-
Spoof the MAC address of the parent interface to match the ISP router?
-
Already done, it was the first thing... (sigh)
-
@trollshiro said in PPPoE host-uniq:
My ISP use host-uniq, but if I fill the field in the GUI, wireshark show that values are sent in EBCDIC.
Actually, it's ASCII. aaaa = 61 ASCII and 81 EBCDIC.
BTW, I started my telecom career as a bench tech overhauling Teletype machines and worked with ASCII and Baudot codes daily. I still have the code card somewhere. There was one system I used to work on, for CN Rail, where the computer worked with ASCII, Baudot, EBCDIC and Hollerith codes, depending on which circuit or device it was talking to.
-
After some debugging I found that the ISP router sent out PADI packets with a weird timing
11:24:53.046530 XX:XX:XX:XX:XX:XX Broadcast PPPoED 58 Active Discovery Initiation (PADI) 11:24:53.707597 XX:XX:XX:XX:XX:XX Broadcast PPPoED 58 Active Discovery Initiation (PADI) 11:24:54.707684 XX:XX:XX:XX:XX:XX Broadcast PPPoED 58 Active Discovery Initiation (PADI) 11:25:06.707842 XX:XX:XX:XX:XX:XX Broadcast PPPoED 58 Active Discovery Initiation (PADI)And it always start working after the the 4th packet is sent. I cannot see the PADO anyway, probably it's filtered by the ONT.
There is also a sort of counter in the corresponding host-uniq field.
Host-Uniq:XXXXXXXXXXXXaaaaaaaa01000000aaaaaaaa4621426f7820... Host-Uniq:XXXXXXXXXXXXaaaaaaaa01000000aaaaaaaa4621426f7820... Host-Uniq:XXXXXXXXXXXXaaaaaaaa01000000aaaaaaaa4621426f7820... Host-Uniq:XXXXXXXXXXXXaaaaaaaa02000000aaaaaaaa4621426f7820...So I gave up, it's completely out of standard.
Do you think it's possibile to use the ISP router only for PPPoE authentication and pfsense as an actual router? -
Possibly if it has some sort of bridging mode. I would not hold my breath though.
Is that "counter" always the same? Have you tried just using the 4 packet string?
Steve
-
It increase by one after 3 packets and then by another one, so it's something like this:
01000000 (0.5 sec)
01000000 (1 sec)
01000000 (12 sec)
02000000 (15 sec) -> here I got connectivity
03000000
03000000
03000000
04000000So I tried to replicate that with a stupid shell script that called mpd5, sleep xx, kill, and do that again with a different mpd.conf file (with another string) but it lead nowhere (timing is not so accurate).
-
Hi,
it's solved now.After some fights with the IPS they changed some settings and I was able to connect directly from my PC (Windows, no MAC spoofing required) but not yet from PFsense. After some debug I found they accept only PAP and they drop the connection with any other protocol so I changed this line in mpd_wan.conf
set link accept chap pap eapto
set link accept papNow it connects smoothly, thanks a lot for your help Hope this could be useful to someone else.
Note: my provider requires also that VLAN is setted to 835, I guess it has something to do with VPI-VCI
-
Still need to send the host-uniq value?
Steve
-
No, it's not needed anymore. The only difference with a standard config is PAP.
