AndrewWiki

User Tools

Site Tools

Trace:
uverse_hacking

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
uverse_hacking [2020/08/24 15:01]
pengc99 		uverse_hacking [2021/10/02 06:46] (current)
pengc99 [Generate / Uplink wpa_supplicant Files]
Line 1: Line 1:
-== Background ==+====== Background ======
 AT&T Uverse service is a triple-play service (internet, phone, and TV) provided by AT&T - depending on what service is available in your area you may be getting FTTH (Fiber to the Home), FTTN (Fiber to the Node), or VDSL (either bonded or unbonded). AT&T Uverse service is a triple-play service (internet, phone, and TV) provided by AT&T - depending on what service is available in your area you may be getting FTTH (Fiber to the Home), FTTN (Fiber to the Node), or VDSL (either bonded or unbonded).
  
Line 22: Line 22:
 In this configuration, the DM200 does not connection tracking and no firewall. The only purpose of the DM200 is to run wpa_supplicant for authentication, and to bridge the DSL and Ethernet links.  In this configuration, the DM200 does not connection tracking and no firewall. The only purpose of the DM200 is to run wpa_supplicant for authentication, and to bridge the DSL and Ethernet links. 
  
-== Hardware Needed ==+====== Hardware Needed ======
   *Netgear DM200 VDSL modem    *Netgear DM200 VDSL modem 
   *AT&T Uverse Router / Gateway BGW210-700   *AT&T Uverse Router / Gateway BGW210-700
   *A router that is capable of setting VLANs on the WAN / Ethernet interface   *A router that is capable of setting VLANs on the WAN / Ethernet interface
     *I'm using a Ubiquiti Unifi Security Gateway Pro 4 port. Any prosumer or professional router should allow you to set the vlan on the WAN interface, but I haven't seen this option in consumer Linksys / Netgear etc type routers. You may need to flash an alternative firmware like OpenWRT to get this if you have a consumer grade router.     *I'm using a Ubiquiti Unifi Security Gateway Pro 4 port. Any prosumer or professional router should allow you to set the vlan on the WAN interface, but I haven't seen this option in consumer Linksys / Netgear etc type routers. You may need to flash an alternative firmware like OpenWRT to get this if you have a consumer grade router.
-== Software Needed ==+====== Software Needed ======
   *curl (already installed on recent Windows 10 builds)   *curl (already installed on recent Windows 10 builds)
   *7zip - https://www.7-zip.org/   *7zip - https://www.7-zip.org/
Line 51: Line 51:
     -''openssh-sftp-server''     -''openssh-sftp-server''
  
-== Extract Certificates From AT&T UVerse RG ==+====== Extract Certificates From AT&T UVerse RG ======
   -Unzip AT&T RG Uverse firmware package - we're looking for ''spTurquoise210-700_1.0.29.bin''   -Unzip AT&T RG Uverse firmware package - we're looking for ''spTurquoise210-700_1.0.29.bin''
   -Disconnect the DSL cable from the UVerse RG.    -Disconnect the DSL cable from the UVerse RG. 
Line 85: Line 85:
   -Extract the tar.gz file - you'll end up with a directory that contains three ''pem'' formatted certificates, a sample ''wpa_supplicant.conf'' file, and a ''readme.txt'' file.    -Extract the tar.gz file - you'll end up with a directory that contains three ''pem'' formatted certificates, a sample ''wpa_supplicant.conf'' file, and a ''readme.txt'' file. 
  
-== Generate / Uplink wpa_supplicant Files ==+====== Generate / Uplink wpa_supplicant Files ======
   -Create a new text file, and paste the following into it and save it as ''99_dsl_eapol.sh'' - you can also just click on the link below and download it.<code - 99_dsl_eapol.sh>#!/bin/sh   -Create a new text file, and paste the following into it and save it as ''99_dsl_eapol.sh'' - you can also just click on the link below and download it.<code - 99_dsl_eapol.sh>#!/bin/sh
  
Line 113: Line 113:
 identity="18:9C:27:18:ED:F1" # Internet (ONT) interface MAC address must match this value identity="18:9C:27:18:ED:F1" # Internet (ONT) interface MAC address must match this value
 key_mgmt=IEEE8021X key_mgmt=IEEE8021X
-phase1="allow_canned_success=1"+phase1="allow_canned_success=1 tls_disable_time_checks=1"
 private_key="/etc/wpa_supplicant/PrivateKey_PKCS1_001E46-27058949910000.pem"</code> private_key="/etc/wpa_supplicant/PrivateKey_PKCS1_001E46-27058949910000.pem"</code>
   -Open FileZilla and connect to the DM200 modem using the sftp protocol as the ''root''   -Open FileZilla and connect to the DM200 modem using the sftp protocol as the ''root''
Line 132: Line 132:
   -At this point the DSL modem should have authenticated using EAPOL using ''wpa_supplicant'', and you should be able to get a IP address and access the internet!   -At this point the DSL modem should have authenticated using EAPOL using ''wpa_supplicant'', and you should be able to get a IP address and access the internet!
  
-== Known Problems ==+====== Known Problems ======
   *DSL training sometimes gets hung up on the DM200. This only happens with the OpenWRT firmware and I haven't been able to figure out why. Power cycling usually solves the problem.    *DSL training sometimes gets hung up on the DM200. This only happens with the OpenWRT firmware and I haven't been able to figure out why. Power cycling usually solves the problem. 
   *Currently there is no way to access the DM200 to configure or view settings. On most DSL / cable modems, it is accessible on a static IP address such as ''192.168.100.1'' or ''192.168.5.1'' even after it has connected to the ISP network. I tried assigning an IP address to the bridge interface on the DM200, but I still can't access it.   *Currently there is no way to access the DM200 to configure or view settings. On most DSL / cable modems, it is accessible on a static IP address such as ''192.168.100.1'' or ''192.168.5.1'' even after it has connected to the ISP network. I tried assigning an IP address to the bridge interface on the DM200, but I still can't access it.
uverse_hacking.1598299308.txt.gz ยท Last modified: 2020/08/24 15:01 by pengc99

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution 4.0 International
CC Attribution 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki