ODI NEW FIRMWARE

[macafeeee]

I get the new firmware V220414. I dont know what changed and I dont have the mac_key calculator. Please share the mac_key calculator if you have it. Thank you. M114_sfp_ODI_Vlan_220414.zip

[Anime4000]

Great!

This firmware allow you to untag VLAN for router that not support VLAN, such as TP-Link TL-XDR5480

[macafeeee]

Do you have the mac_key calculator?

[Anime4000]

Do you have the mac_key calculator?

no, I don't have... you can request at ODI

[macafeeee]

Do you have the mac_key calculator?

no, I don't have... you can request at ODI

ODI is not friendly and the response speed is slow. Looking forward to hack it.

[skon77]

ODI is not friendly and the response speed is slow.

And it's not certain that they will generate codes for everyone. It is unlikely that they are interested. A systemic solution is needed here.

[Anime4000]

Do you have the mac_key calculator?

no, I don't have... you can request at ODI

ODI is not friendly and the response speed is slow. Looking forward to hack it.

What I understand, GPON Standard not using MAC Address to Authenticate:

This what OLT see:

GPON using ATM like ADSL2+ and connection at Layer 3, no MAC Address is involved

I believe your Router WAN MAC Address need to change

if you using EPON, then different story...

Sorry

[skon77]

What I understand, GPON Standard not using MAC Address to Authenticate

In my country, one of GPON providers (not mine) uses binding to MAC address. I don't know all the nuances, but it seems to use the Port Security option. Port Security is a feature of the switch that allows you to specify MAC addresses of hosts that are allowed to transmit data through the port.

[Anime4000]

What I understand, GPON Standard not using MAC Address to Authenticate

In my country, one of GPON providers (not mine) uses binding to MAC address. I don't know all the nuances, but it seems to use the Port Security option. Port Security is a feature of the switch that allows you to specify MAC addresses of hosts that are allowed to transmit data through the port.

it seem your GPON Provider using proprietary OMCI...

pon0 in ODI Stick using Null MAC, you can change by using ipconfig.

GPON should be Layer 3, only router MAC Address need to change for DHCP Server authenticate the router.

in my country (Telekom Malaysia) are using Universal Deployment... Mix and Match various vendor and various model, Telekom Malaysia only need valid PLOAM Password & Hardware Version.

Without valid Hardware Version, OMCI upstream VLAN not open even having O5

[stich86]

still same problem of other firmwares, the MEID 171 is not honored.

Only way to bring PPPoE up is to using the VID in MEID 84 :(

[stich86]

GPON should be Layer 3, only router MAC Address need to change for DHCP Server authenticate the router.

usually MAC address is used on the LAN side. May be they check that one? on the GPON stuff MAC is not used, everything is encapsulated into a GEM frame which doesn't contain any MAC information of PON port

[Anime4000]

everything is encapsulated into a GEM frame which doesn't contain any MAC information of PON port

Indeed... 😄

If you using Stick as Router Mode, then you need change Stick MAC

Newer ODI firmware is Bridge Mode, MAC Address not used

[macafeeee]

Do you have the mac_key calculator?

no, I don't have... you can request at ODI

ODI is not friendly and the response speed is slow. Looking forward to hack it.

What I understand, GPON Standard not using MAC Address to Authenticate:

This what OLT see:

GPON using ATM like ADSL2+ and connection at Layer 3, no MAC Address is involved

I believe your Router WAN MAC Address need to change

if you using EPON, then different story...

Sorry

Unfortunately，I'm using the EPON Line.

[Anime4000]

Do you have the mac_key calculator?

no, I don't have... you can request at ODI

ODI is not friendly and the response speed is slow. Looking forward to hack it.

What I understand, GPON Standard not using MAC Address to Authenticate: This what OLT see: GPON using ATM like ADSL2+ and connection at Layer 3, no MAC Address is involved I believe your Router WAN MAC Address need to change if you using EPON, then different story... Sorry

Unfortunately，I'm using the EPON Line.

You can buy TWCGPON657 then use V2801F firmware in it, from that you can change MAC Address by using Keygen provided on the guide

[stich86]

just for information, that firmware doesn't seems stable when the stick run in HiSGMII mode. I had to revert back on 220404 that doesn't have link loss behaviour

[Anime4000]

since I know nv setenv sw_commit sw_active I simply switch 😄

[stich86]

since I know nv setenv sw_commit sw_active I simply switch 😄

yep I know ;) hope they don't screw up the HiSGMII part!!

[mcheev]

Can you explain what is the difference between VS_AUTH_KEY and MAC_KEY I'm confused about these concepts.

[Anime4000]

the key like a License or Lock MAC Address or other info from changing...

VS_AUTH_KEY

this for V2801F, it prevent changing MAC Address and Hardware Version

MAC_KEY

this for ODI DFP stick, it prevent changing MAC Address only...

TWCGPON657 stick/firmware don't have these problem

[macafeeee]

New Firmware V220527! That's support pppoe or ipoe. It still need mac key. M114_sfp_ODI_hybrid_220527.zip

[Anime4000]

wow, this hybrid can switch mode between Router and Bridge Mode ?

[macafeeee]

wow, this hybrid can switch mode between Router and Bridge Mode ?

Yes! You are right!

[stich86]

wow, this hybrid can switch mode between Router and Bridge Mode ?

looks like this firmware still doesn't honors DEVICE_TYPE setting it to 0 or 1 it's the same, "spppd" is still running.

On that firmware now MEID 171 for my FTTH connection has only one entry (like 2107XX firmware)

I'll try in the next days to connect over swapped VLAN to see if it fix my initial issue :)

[stich86]

they have also changed the WebUI (looks very weird..)

[stich86]

I confirm this firmware has same behaviour of 2107XX, so I can bring up PPPoE using my "swapped" VLAN 835 instead of native 100.

Now @Anime4000 you should check if the 4-port emulation is working, because this firmware seems a pure "router" mode

[stich86]

New Firmware V220527! That's support pppoe or ipoe. It still need mac key. M114_sfp_ODI_hybrid_220527.zip

just a question (if you know): MAC_KEY is needed also to bring up PPPoE\IPoE? I got a second ODI (the one with embedded radiator), but also on this one the MAC_KEY is empty :(

[Anime4000]

@stich86 Firmware 220527 doesn't work with 4-port emulation, omcicli mib get 84 show same table as before, pon_wan.asp try to map vlan 621 doesn't work...

I had to revert back to 220414 firmware.

this mean... ISP use ONU as SFU (Switch Fabric Unit) like my ISP, need to use 220414 bridge firmware ISP use ONU as IGD (Internet Gateway Device), need to use 220527 router firmware

220527 is not hybrid, it act like 210702.tar older firmware, worthless for ONU in SFU

Interface now going too like V2801F...

[vuducdong]

[Anime4000]

my ISP use SFU that has POTS build-in, only V2801F and DFP-34X-2C2 220304 work just fine

I tried G-010S-P, it cause stick disconnect from RB5009 when applying OMCI VLAN filter:

https://user-images.githubusercontent.com/1908715/170985519-2ecabc06-bc59-4616-a32f-81900e4a1d19.mp4

This mean, not all xPON ONU SFP support SFU mode. MA5671a, G-010S-P, TWCGPON657 stock, DFP-34X-2C2 220527... failed to bridge and failed to emulating 4 LAN Ports...

[jason-akw]

Some interesting things:

Usually, SFU mode uses PPTP (Physical Path Termination Point), and HGU/IGD uses VEIP (Virtual Ethernet Interface Point). But DFP-34X-2C2 is more preferred using VEIP when OLT supports it, even on 220304 and 220414 fw. The ONU from my ISP work as HGU, but 220527 firmware is not working, only 220414 works.

And the MA5671A, G010SA, and G010SP (lantiq sticks) only support PPTP mode, and seems the stick don't support ME 171. On the firmware for lantiq sticks from right.com.cn, actually they make a script to make ME 171 rule manually.

[Anime4000]

@akw28888

Interesting... this is new information...

no wonder I can not use firmware ODI 210702 and 220527, only works 220304 and 220414

it show my OLT use VEIP, making my Lantiq stick cannot be use

my original ISP ONU xml show VEIP Instance ID 0x0e01 https://github.com/Anime4000/Hacking_Huawei_HG8240H5_ONT/blob/master/xml/hw_ctree.xml#L109

need more info about this so I can update the guide

[jason-akw]

@Anime4000

I have some guess on the 210702 and 220527 fw. Maybe they only work on some specific environments, I think we only can use this firmware when OLT does not use the ME 171 rule. I also have some ODI's single port ONUs with Realtek chips, and the firmware is router mode, I tested it on my broadbands, and I found some information: 1) ISP A (Huawei OLT), I receive VLAN 100 on ME 84, no ME 171 rules -> the VLAN 100 is working 2) ISP B (Alcatel or DASAN OLT), I receive 2 VLAN, have ME 171 rules -> Broken, both original VLAN ID and mapped VLAN ID are not working.

About your ISP, do you receive ME 329 (VEIP) on the ODI stick? Or you receive ME 11 (PPTP). Lantiq sticks have some bugs on bash scripts, like equipment id and software version will be converted to wrong strings, but it can be solved And how many parameters will verify on TM's OLT?

Also, I found some things on Huawei OLTs, even though I set up the many OMCI parameters, ISP A still found I am using a third-party's ONU. I think Huawei has some proprietary protocols, that ISP can check it on the OLT.

The ISP A has some strange rules, they told me I can not change the setting to Bridge mode, once they found I changed it to the Bridge mode, they will push the XML config file to the Huawei ONUs to force change it back to DHCP on VLAN 100.

[Anime4000]

ME 329, VEIP

ME 11, EthUni, PPTP ?

ME 53 prints noting...

what I understand, my ISP can provision specific ONU LAN port and disable other ONU LAN port, this called EthUni in ME 11

when I use single LAN ONU, the LAN port disabled after O5, it try to enable LAN 2 on single LAN ONU which is not exist...

[jason-akw]

@Anime4000 try to check me 264

[Anime4000]

@akw28888

# omcicli mib get 264
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Unig
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
=================================
EntityID: 0x0101
CfgOptionStatus: 0x0000
AdminState: 0
ManageCapability: 2
NonOmciPointer: 0x0000
RelayAgentOptions: 0x0000
=================================
=================================
EntityID: 0x0601
CfgOptionStatus: 0x0000
AdminState: 0
ManageCapability: 0
NonOmciPointer: 0x0000
RelayAgentOptions: 0x0000
=================================

What this mean?

[jason-akw]

ME 264 is UNI-G (PPTP Ethernet UNI), the ME 264 works with ME 11.

I am trying to find out which ME defines 4 LAN port.

[Anime4000]

I see, this is odd, entity 0x0601 exist on ME 264 and ME 329

ME 329

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
VEIP
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
=================================
EntityId: 0x0601
AdminState: 0
OperState: 0
InterDomainName: 0x00000000000000000000000000000000000000000000000000
TcpUdpPtr: 0x0000
IansAssignPort: 0
CustomizedSlotId: 0xff
=================================

ME 11

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
EthUni
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
=================================
EntityID: 0x0101
ExpectedType: 47
SensedType: 47
AutoDectectCfg: 0
EthLoopbackCfg: 0
AdminState: 1
OpState: 0
DuplexInd: 3
MaxFrameSize: 2000
DTEorDCEInd: 0
PauseTime: 65535
BridgedorIPInd: 2
ARC: 0
ARCInterval: 0
PppoeFilter: 0
PowerControl: 0
PhysicalPortId: 0
=================================

ME 264

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Unig
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
=================================
EntityID: 0x0101
CfgOptionStatus: 0x0000
AdminState: 0
ManageCapability: 2
NonOmciPointer: 0x0000
RelayAgentOptions: 0x0000
=================================
=================================
EntityID: 0x0601
CfgOptionStatus: 0x0000
AdminState: 0
ManageCapability: 0
NonOmciPointer: 0x0000
RelayAgentOptions: 0x0000
=================================

ME 329 + ME 11 = ME 264

PPTP is that OLT directly sends VLAN data to each physical interface of ONU, fixing the whole processing process of data flow. VEIP virtualizes the total interface of an ONU source

I confused now, it should be PPTP or VEIP but not both right?

What I know, my fiber ISP give many ONT brands, so far I checked: Nokia G-240G-E is SFU ONT Huawei HG8240H5 is HGU ONT

both ONT works

😵😵😵

[tdmadam]

I confused now, it should be PPTP or VEIP but not both right?

It is normal for dual-managed ONUs that ME 264 includes VEIP. The days when ONUs only implemented PPTP or VEIP entity are slowly becoming a thing of the past. And DFP-34X-2C2 is not an ordinary SFP it has many software hacks to emulate some functions.

Most Routing Gateways (RGs) are now certified as dual-managed utilizing either VEIP or PPTP to manage non-OMCI domain. Check the "Notes" in the latest list of devices

www.broadband-forum.org/wp-content/uploads/2022/08/BBF.247-GPON-ONU-Products-2022-08-01.pdf

[Anime4000]

@tdmadam understood

based ME report I put, my fiber is confirmed using VEIP right?

only VEIP can provision enable/disable certain LAN Port and map inner outer VLAN

[lanseyujie]

New Firmware

ODI XPON ONU STICK DFP-34X-2C2

e35f72dca3bb7f39be44167e0bb753f15f357ec4eb5345e8ce1e0d90179a38ab  M110_sfp_ODI_220923.tar
dd3741cbb8cb7926fdaa6386750453738dba773053a7090cc10c8018c7bb265d  M114_sfp_ODI_hybrid_220916.tar

Archive.zip

[Anime4000]

Nice!

[luizfeliperj]

Regarding the MAC_KEY, have you guys used this script to generate a new key?

https://gist.github.com/rajkosto/29c513b96ea6262d2fb1f965a52ce16f

[jackblackjjx]

@Anime4000 Hey,friend. Now I use the newer firmware, the same as you before,I can't use pppoe or bridge to connect my internet.And How to downgrade firmware? (I directly upgraded with the old firmware, but after the upgrade, it was garbled and still not working, so I used the latest again) So how can I fix this? Buy a new managed switch? Or a dual 2.5g router（i wanna buy zte ax3000pro+,looks like not bad）？

[onion83]

I get the new firmware V220414. I dont know what changed and I dont have the mac_key calculator. Please share the mac_key calculator if you have it. Thank you. M114_sfp_ODI_Vlan_220414.zip

echo -n "hsgq1.9a[MACADDR]" | md5sum

[MACADDR] format Like this: AABBCCDD1234 (Uppercase)