Getting the PPP Username and Password for CenturyLink Zyxel C1000Z Modem

My first DSL modem in 1999 required Telnetting in via serial port to USB. I had to call a network technician at Qwest, and followed by typing in what seemed like arcane commands. I had no idea what I was doing. Things have changed for the better, but most DSL modems still have the ability to log into them directly through command line interfaces. The C1000Z runs BusyBox Linux which comes loaded with your usual base Linux utilities, so if you can wield Bash, you can hack your modem.

Grabbing your PPP username

I was looking to enabled the Transparent Bridge mode for my new Netgear R6050 after a friend managed to break the internal antenna on my Zyxel C1000Z, I wasn’t home so I don’t know the physics involved. Rather than pay $99 to CenturyLink for a new modem/router I decided to buy a new WAP/Router.

Having a little network administration under my belt, I figured I could grab the PPP Password.

The following guide was indispensable and got me 95% of the way there so I suggest checking it out first and/or following it along with my more “For Dummies” guide:

How to Find Your CenturyLink PPP Password on a Zyxel C1000Z Modem

You’ll want a basic understanding of SSH and/or Telnet. OS X regardless of version come with SSH and Telnet as does (almost) every flavor of Linux. Windows users will need Putty.

You’ll want a basic understanding of SSH and/or Telnet. OS X regardless of version come with SSH and Telnet as does (almost) every flavor of Linux. Windows users will need Putty.

Step 1:

First you’ll need to enable telnet in your Router, and you’ll need PPPoe enabled (Under WAN settings), these can easily be done through the Modem’s GUI

Step 2:

Fire up your terminal (Windows users will have to use Putty, and translate the instruction) and type:

telnet YOUR-IP-ADRRESS

In this example, my router’s IP address is 192.168.0.1, this is the default address so I would type:

telnet 192.168.0.1

It make take a moment for the router to respond, once it does, respond something like “BCM963268 Broadband Router” and it should ask for your username, type in the username you entered hit return and it should then ask for your password, enter the password you typed in, hit return.

Step 3:

Using the terminal we can call all the active tasks running on the modem, to do so type:

ps

Geek stuff: Users can use sh to access the BusyBox linux Bash shell and run task monitoring software like top. If you’re feeling adventurous, type sh and poke around using commands like ls and top. You can grab the process ID using top just like we do in step 4.

Step 4:

You should see a long list of responses, that read:

PID USER       VSZ STAT COMMAND  
1 admin     1556 S    init  
2 admin        0 SW<  [kthreadd]    3
 admin        0 SW<  [migration/0]  
4 admin        0 SW   [sirq-high/0]
and so on... We’re only interested in one entry, the one that’s running the pppd (or ppp*) command. it’ll probably be at the bottom. It should read something like:
3494 admin     1808 S    pppd -c ppp0.1 -i ptm0.1 -u myusername@qwest.net -p **

The myusername@qwest.net is your username.

Step 5:

cat proc/3494/cmdline 

Next you’ll need to analyze the process ID further, take special note of the preceding number, in this example its 3494. Type in the console:

pppd-cppp0.1-iptm0.1-umyusername@qwest.net-pjlFrVNtRMtU=-f0-D0-n1-L0-X120 >

The password portion of this is encoded, the tricky part here is identifying it. We know the that this is a concatenated line by gauging from the previous line. The password portion should be between -p  and -.  In this example, the encoded password is:

jlFrVNtRMtU=

Step 6:

This password is encoded in base64, thanks to the leg work Make a new tab or new terminal window, and type:

echo "jlFrVNtRMtU=" | base64 --decode

It should spit back something like:

ac7gkDnUmac-pro:~ user$

The ac7gkDnU will be your PPP password. Congrats! You’re now ready to enable transparent bridge mode on your router.

Article posted by blog@greggant.com

Read More

ZyXEL HES-319M2W

Ultimate WiMAX MIMO Technology for Outdoor Application

The ZyXEL HES-319M2W a.k.a. Linkem HES-319M2W, but please don't be confused to its original hardware manufacturer the Huawei Technologies. The Huawei model HES-319 and HES-319M2W on other country ISP is being loaded with ZyXEL operating system or. and by Linkem.

Benefits

Built-In High-Gain MIMO Antenna in the Outdoor Unit

The HES-319M2W Outdoor CPE provides integrated antenna (The CROSS- Polarization 14dBi) for easy installation and high performance in different environments. The MIMO technology will increase the coverage, bandwidth and reduce the edge corner which cannot get the better sensitivity. Tx Diversity is supported.

credits image

High Transmission Power with Low Power Consumption

The HES-319M2W supports the maximum transmission power on nominal 26 ± 1dBm at room temperature. This enable network operator to easily extend its radio network coverage.

credits image

Ultimate Broadband Wireless Technology

MIMO products support state-of-the-art Matrix A and Matrix B modes.

Software Upgrade over the Air

Through the WiMAX radio interface, the HES-319M2W Outdoor CPE supports TR-069 or OMA-DM fully configurable and software upgradeable through events triggered by the operators.

VoIP embedded in Outdoor Unit

The HES-319M2W Outdoor Unit supports two SIP (RFC3261)-based VoIP. It will be cost effective and price performance design concept. As for Indoor unit, it just simply provides power via PoE Ethernet Cable.

WiFi 11b/g/n and Ethernet

The HES-319M2W supports one WiFi (11 b/g/n) with two Ethernet RJ45 ports.

Advanced IP Networking Features

The HES-319M2W Outdoor CPE supports advanced IP networking functionalities, including all Secure NAT Router features needed to access the Internet safely.

Easy-to-Install Multi-User Solution

The HES-319M2W comprises an integrated antenna. The LED bars as well as buzzer showing the WiMAX radio signal strength can be used

Specifications

WiMAX Air Interface	Reference standard: IEEE 802.16e-2005 SOFDMA Duplex mode: TDD Frequency: 3,400-3,600GHz Channel Bandwidth / FFT size: 5MHz / 512FFT, 7MHz/ 1024FFT, and 10MHz/1024FFT Modulation: QPSK, 16QAM, 64QAM(DL Only) Matrix A & Matrix B support Sensitivity: -96dBm @ QPSK 1/2 Antenna: 14 dBi MIMO CROSS- Polarization Aggregate throughput Up to 20 Mbps QoS management based on classification: BE, UGS, rtVR, nrtVR, ertVR Security: PKMv2, EAP-TLS, EAP-TTLS/CHAP/PAP/MSCHAP/MSCHAPv2, CMAC message authentication, CCM mode 128-bit AES data ciphering Idle mode, Sleep mode, Hand Over, BS-initiated scanning and reporting.
ND&S*2	Auto selection User selection
Wi-Fi Air Interface	Reference standard: IEEE802.11b/g/n Transmit Output Power: o 802.11b: 16 dBm +/-2.0 dBm o 802.11g: 14 dBm +/-2.0 dBm o 802.11n: 13 dBm +/-2.0 dBm Receiver Sensitivity: o 802.11b: -86dBm @ Typical o 802.11g: -71dBm @ Typical o 802.11n: -65dBm @ Typical
IP Networking	Support IPv4 Static IP, DHCP client/server/relay DNS relay, DNS cache User configurable Router (RIPv1, RIPv2) and NAT (one-to-one, many-to-one) VPN Pass Through (PPTP & L2TP Pass-Through)
Voice over IP	SIP V2 (RFC 3261) and SDP (RFC 2327) G.711 a/u and G.729 codec Echo cancellation G.168 VAD (Voice Activity Detection), Silence suppression and CNG (Comfort Noise Generation) DTMF Detection and Generation Fax pass-through(T.38)
Phone Features	Caller ID and Message Waiting Indicator (MWI, RFC 3842) Call Waiting, Call Hold, Call Forward (Unconditional/Busy/No Answer) and Call transfer (Unattended and Attended Transfer) Early Media, Music on Hold
Management	Remote TFTP/HTTP Firmware Upgrade Web-based/SNMP/Telnet Management Over-The-Air firmware upgrade(OMA-DM,TR-069)
Hardware Specifications
Outdoor Unit	Provides Power over Ethernet via PoE ports (one for Ethernet, one for VoIP). Five Intelligence LEDs Reset to Factory Defaults The pole-mounting kits Rated for outdoor weather environment including ultraviolet sun radiation
Indoor Unit	Provides Power over Ethernet via PoE ports (one for Ethernet, one for VoIP) Two RJ-11 ports for VoIP Two RJ-45 ports for Ethernet 802.11b/g/n Wi-Fi interface LEDs: Power indication, WiMAX connection status, WiMAX Signal status, Wi-Fi connection status, VoIP status LED
Power Specification	External power supply: 48V DC Average power consumption at peak: 24 W
Physical Specifications
Outdoor Unit	Dimension: 255(W) x 254(D) x 58(H) mm Weight: 1071 g
Indoor Unit	Dimension:188(W) x 131(D) x 41(H) mm Weight: 284 g
Environmental Specifications
Outdoor Unit	Operation Temperature: -40oC ~ 60oC Operation Humidity: 10% ~ 90% (Non-condensing) Storage Temperature: -40oC ~ 65oC Storage Humidity: 10% ~ 95% (Non-condensing)
Indoor Unit	Operation Temperature: 0oC ~ 45oC Operation Humidity: 10% ~ 90% (Non-condensing) Storage Temperature: -40oC ~ 65oC Storage Humidity: 10% ~ 95% (Non-condensing)
Certification	CE certification marked for EMC and Safety Water Tightness: IEC529 / IP65

Read More

Researchers publish open-source tool for hacking WiFi Protected Setup

On December 27, the Department of Homeland Security's Computer Emergency Readiness Team issued a warning about a vulnerability in wireless routers that use WiFi Protected Setup (WPS) to allow new devices to be connected to them. Within a day of the discovery, researchers at a Maryland-based computer security firm developed a tool that exploits that vulnerability, and has made a version available as open source.

WiFi Protected Setup, a standard created by the WiFi Alliance, is designed specifically for home and small business users of wireless networking to easily configure devices without having to enter a long password. Offered as an optional feature on WiFi routers from a number of manufacturers, it automates the setup of the WiFi Protected Access 2 (WPA2) authentication between the router and a wireless device. One of the standard's methods of establishing connection that is supported by all WPS-capable routers is the use of a personal identification number, usually printed on the wireless router itself, to authenticate the device.

But as security researcher Stefan Veihbock found and reported to US-CERT, the PIN implementation is susceptible to "brute-force" attacks because of the way routers respond to bad requests, and the nature of the PIN itself. When a PIN request fails, the message sent back to the wireless device attempting to connect contains information that can help an attacker by revealing whether the first half of the PIN is correct or not—reducing the number of guesses that an attacking system would have to make. Additionally, the last number of the PIN is a checksum for the the rest of the PIN. As a result, an attacker could get the PIN within 11,000 guesses. Veihbock demonstrated the vulnerability with a proof-of-concept tool he wrote in Python, available for download from his site.

That wouldn't be as much of a problem for security if wireless access points locked out devices after repeated bad PIN entries. But on many WPS wireless routers, there is no lockout feature. That means attackers can continue to attempt to connect at their leisure.

And unlike passwords, the PIN is something that can't usually be changed by the router's owner. That presents a huge security loophole for attackers—once they've gained the PIN, they can reconnect at will to the network, even if the administrator has changed the password or service set identifier (SSID) for the network. And on access devices that have multiple radios in them providing network connectivity for different SSIDs with different passwords, the PIN can provide access to all of the wireless networks on the router.

According to a blog post by Tactical Network Solutions' Craig Heffner, this type of attack is one that researchers at the Columbia, Maryland based security firm have been "testing, perfecting, and using for nearly a year." Now the company has released an open-source version of its tool, Reaver, which Heffner says is capable of cracking the PIN codes of routers and gaining access to their WPA2 passwords "in approximately 4 [to] 10 hours." The company also is offering a commercial version of the tool that offers features like a web interface for remote command and control, the ability to pause and resume attacks, optimized attacks for different models of wireless access points, and additional support.

The routers most vulnerable to these attacks—the ones without PIN lockout features—include products from Cisco's Linksys division, Belkin, Buffalo, Netgear, TP-Link, ZyXEL, and Technicolor. None of the vendors has issued a statement on the vulnerability, or replied to inquiries from Veihbock.

Read More

TM FTTH Immaturity: GPON vs GEPON

Implementing FTTH at this time doesn't guarantee that it's future proof yet. So to say that FTTH is the future is not true. The technology has not been finalized yet.

There're still 2 competing PON technology branches which have not been finalized yet - GPON and GEPON. TM would have to spend for another round of upgrades when they move on to newer PON technologies in future when 2nd generation 10gbps PON technologies are commercialized.

On the other hand, VDSL2 allows faster deployment and paves the way for future FTTH when need arises. You already have boxes which are placed less than 300m to homes fed with fiber. Further extension of fiber to homes is not a problem.

One (1) year ago I might tell you that GPON is winning the Passive Optical Network(PON) competition but it seems GEPON has started to gain back momentum.

Japan, Taiwan, China, Indonesia are all adopters GEPON and the next upgrade to 10GEPON shows good advantages over GPON. GPON on the other hand has started to see its decline with Verizon now slowing down their deployments.

What advantages do 10GEPON(IEEE standard) have over 10GPON(ITU-T)?

• GEPON is purely ethernet based and it was designed to accommodate full IP based services such as VoIP and IPTV - less complications.
• GEPON requires less trasmit power compared to GPON.
• GEPON will beat GPON in the next generation 10gbps based upgrades. Think 10GEPON (IEEE802.3av)
• GEPON equipments are cheaper.
• GEPON supports the defined standard for RF overlay called DePON whereas GPON RF solutions are proprietary depending on manufacturers.
• GEPON is more matured and had a better start than GPON.

Among the top companies supplying GEPON equipments are UTStarcom, Fujitsu, Sumitomo, NEC, Hitachi, FiberHome, Zyxel, ZTE, Arris, Huawei, Enablence, Corecess, Mitsubishi & Teknovus

http://gpon.blogspot.com/2010/12/gpon-vs-gepon.html

I believe TM went for the wrong technology again by supporting GPON.

Anyway can you tell me how much distance difference of fiber you have between VDSL2 and FTTH once again? Is it enough to justify the extra fiber length?

We don't need FTTH yet and the technology is still not matured yet. In fact it has been proven that even HFC cables for cable TV using DOCSIS3+ technology could achieve 1.5Gbps speeds.
Source: http://www.broadbandreports.com/shownews/C...-15-Gbps-113239

BT Next Generation broadband(NGN) is VDSL2 based.

Telenor Norway is implementing VDSL2 for its next generation broadband projects.

AT&T UVerse & Bell Canada also uses a mixed VDSL & VDSL2 technologies.

Taiwan's 光世代 Fiber Internet pare serviced by VDSL2.

1/2 of Japan's fiber internet is also served using VDSL2 especially in multi tenant buildings.

Taken from http://en.wikipedia.org/wiki/Ftth

Fiber is often said to be 'future proof' because the speed of the broadband connection is usually limited by the terminal equipment rather than the fiber itself, permitting at least some speed improvements by equipment upgrades before the fiber itself must be upgraded. Still, the type and length of employed fibers chosen, e.g. multimode vs single mode, are critical for applicability for future high gigabit connections.

http://en.wikipedia.org/wiki/Fiber-optic_communication

In certain situations fiber may be used even for short distance or low bandwidth applications, due to other important features:

• Immunity to electromagnetic interference, including nuclear electromagnetic pulses (although fiber can be damaged by alpha and beta radiation).
• High electrical resistance, making it safe to use near high-voltage equipment or between areas with different earth potentials.
• Lighter weight—important, for example, in aircraft.
• No sparks—important in flammable or explosive gas environments.
• Not electromagnetically radiating, and difficult to tap without disrupting the signal—important in high-security environments.
• Much smaller cable size—important where pathway is limited, such as networking an existing building, where smaller channels can be drilled and space can be saved in existing cable ducts and trays.

I have to agree that eventhough VDSL2 is more value for money, but for the sake of future improvements, fiber is the way to go..

ADVANTAGES OF GEPON:

There are many advantages of the GEPON. They are listed and discussed here.

1. Service flexibility: The GEPON does lots of services and it is of very flexible type.
2. Easy, modular planning and rollout: The GEPON is the easiest mechanism and there is modular planning and roll out that is attached with the GEPON which adds lots of benefits to the GEPON differentiating from the GPON.
3. Highest density and availability.
4. Price. GEPON solutions at the time of writing are more cost effective
5. Much more easy configuration - easier to use, almost plug and play technology.

That's where GPON's advantage stops.

As I said, 1 year ago I recommended GPON due to its higher bandwidth but when it comes to future options, GPON is less attractive as a long term investment.

Why?

For the next update, 10GEPON's (future extention of GEPON) advantages clearly overshadows's GPON's 10GPON(XG-PON). You have the advantages of lower transmit power, better error correction features, more flexible bandwidth management - allows asymetrical/symmetrical speeds such as 10G/10G, 10G/1G, superior backward compatibility with older GEPON and simple Ethernet structure.

All these translates to cheaper cost.

GEPON is now proven to be matured having seen its success particularly in Japan, China, South Korea & Taiwan.

Top 10 FTTx operators around the world since the end of 2009 (in number of subscribers)

Rank # Operator / Main technology & architecture = FTTx Subscribers
1 # NTT (Japan) / FTTH/B GEPON = 12 779 000
2 # China Telecom(1) / FTTH - FTTx+LAN EPON LAN/DSL = 11 160 000
3 # China Netcom(2) / FTTH - FTTx+LAN EPON LAN/DSL = 5 590 000
4 # KT (South Korea) / FTTB EPON/GEPON = 4 630 000
5 # Verizon (USA) / FTTH BPON/GPON = 3 430 000
6 # SK Broadband (South Korea) / FTTB/LAN GEPON = 3 032 099
7 # ER Telecom (Russia) / FTTB = 2 140 000
8 # AT&T (USA) / FTTN VDSL2 = 2 100 000
9 # Chunghwa Telecom (Taiwan) / FTTB GEPON = 1 639 824
10# LG Powercom (South Korea) / FTTH/B EPON/GEPON = 1 566 206

Source: IDATE

Unfortunately, TMnut went ahead blindly with GPON and now they're STUCKED! Worst yet, this wouldn't happen if VDSL2 was deployed first, waited for the FTTH PON standard to finalized then only you extend fibers into homes.

The 3 largest FTTH markets in the world today are still China (largest FTTH market), South Korea and Japan.They all chose GEPON as their preferred standard.

No other continents have beaten them in subscriber numbers.

The only major countries which threw in the support for GPON were USA, Australia, Singapore and the Middle East. Even that said, Verizon FiOS which deploys GPON in the States are now facing difficulties expanding due to the high cost of GPON today. They seem to be halting their expansion plans as the economic crisis looms.

Most countries in Europe prefers P2P Active Fiber or ETTH at apartments. This includes HK where HKBN higher tiered 1Gbps package subscribers have dedicated 1Gbps ports at the switch located in the MDF room using AON.

In Malaysia:

TM Unifi: GPON
Jaring Flite FTTH: GEPON
OMNI: Active P2P Ethernet

Frankly, AON is the best future-proof technology.

Traditional dedicated copper pair->Hybrid fiber/ dedicated copper(ADSL2+, VDSL2, VDSL2 bonding)->P2P AON Fiber.

Taiwan CHT HiNet recently launched its 100M/10M FTTB via VDSL2 for approx RM140 per month. Other lower tiered packages include:

50M/5M for approx RM99 per month
20M/4M for approx RM94 per month
12M/3M for approx RM89 per month
4M/786k for approx RM80 per month

Among the 5 packages, they are promoting 50M as the mainstream package.

Most cases if you're subscribing to a package above 100M, it's safer to take the AON/ETTH route where you have dedicated lines. Passive optical networks such as GPON/GEPON will less likely give you the extra speed unless you're the ONLY few sharing the same line.

Maybe if there's less than 5 people sharing the same line in the apartment but very unlikely because those who subscribe to such high speed packages are normally heavy downloaders who are keeping their lines busy almost every minute in the day.

Thats exactly why I wonder. 20mbps seems to be enough for now. Blu-ray 3D streaming rate is about this area too. I cant brain why would any regular user currently need >20mbps other than transferring large quantity of media files to a friend on the otherside of the world.

Until then the media industry need to move up from 1080p again b4 the bandwidth require kicks up again. lets dont talk 3D 1080p yet. We dont even have a wide scale of normal 1080p IPTV implement yet. ( for ex. broadcasting international HD channels for International user not just Unifi IPTV) Need HULU for Malaysia biggrin.gif

even now using a VIP5 Unifi, I hardly able to use up >200GB per month, thats 1/5 of what a VIP5 can do for 1 month = 1TB. I would be more than happy to enjoy the fiber line ping time than the bandwidth they offer. I just wish TM have a smaller bandwidth package for a cheaper price.

China is GPON?

Interview with Dr Shen, Director of Broadband Division, China Telecom

Standard China Telecom Home Setup in Shanghai

Fiber port labelled EPON

You can buy one of this unregistered stray units from Taobao Auction Site China for spare:

FTTH plans in China are now going from minimum 10mbps to maximum 30mbps. Towards end of this year expect a new 100mbps package to be launched. China Telecom have already made official announcements for it.

Economics is about saving and putting resources to optimum use.

NTT Japan and China has no interest in using GPON because they are building an entirely new fiber optic network which is purely IP based. Unless you plan to shift any old telephony services or cable tv over to the new network, there is NO need for GPON's unless you need multi protocol standards such as ethernet, ATM and TDMA to run simultaneously over it.

EPON/GEPON (ethernet PON) keeps operation simple because the ONLY protocol they need to handle is Ethernet transport since everything is IP-based. Internet data, IPTV and VoIP.

Less headaches and no need for complex management of operations.

China is the largest FTTH market today. NTT Japan has the highest EPON FTTH subscribers followed by South Korea. Taiwan will be following them soon but they rather prefer FTTB with VDSL2.

Only adopters of GPON is Asia?
Etisalat and STC of Saudi Arabia

GPON FTTH installer staffs in UAE:

Three (3) methods which we'll see them take place starting in early 2012..

Pair bonding, Vectoring & Phantom Pairing

Previously those who live around 0.5-1km range from the fiber cabinets such as in UK, they were only getting 40mbps MAX.

Just last month, AlcaLu released a new technology called vectoring which effectively doubles that easily boosting speeds of 100% for the same distance ranges at 80mbps average. It's a breakthrough in DSL technology because vectoring could simulate ANTI noise waves to cancel out noises in your copper wire.

BT OpenReach as well as many European operators will implement this technology starting next year. ZTE is expected to follow.

Think of it, 80mbps DEDICATED bandwidth per user port.

If you combine more pairs by bonding, you can get 300mbps+ without spending a bomb on pulling fiber into your homes.

AlcaLu Presentation On VDSL2 Vectoring - 5mins video

You are right that high rise apartment uses VDSL2 but it's connected to Fiber from the exchange box in the apartment onwards for HSBB. Anyhow, your latency is bottleneck by the VDSL2 in the apartment which is under the management of the apartment not TM.

I understand that condo in Korea is mandatory to have fiber connection by default by the government to every single units.

So in Malaysia, in the future our maximum throughput offered for condo will be lower than landed property because VDSL2 max at 250Mbps meanwhile fiber at 2.5Gbps.

I remember TM did a trial on EPON at the same time they starting the GPON roll out ... maybe the trial didn't went well so they proceed with GPON ...

found this from google http://www.tmrnd.com.my/PR%20FTTH%20Showcase%2017July07%20ver4_12July07.pdf

The only reason for direct fiber cabling is when they need to go beyond 1gbps in the near future but the FTTH technology which Korea is trialling is different from what TM is using.

Korean broadband has limitations in some way that its international connections can be crappy. Given a country that has a population size of double Malaysia and such high broadband subscriptions, they have lower capacity links to the US compared to a small island such as Singapore. Korea is shadowed by neighbouring countries such as Japan, Taiwan and HK which directly faces USA across the Pacific.

Their local server connections is only as good as it gets. Malaysia should never use them as a good role model for internet infrastructure.

If you take notice, all the speedtests which they always show to public are usually local based servers? It's more like a local intranet to them without the great firewall that China puts in place. -LowYat

Read More