logo elektroda
logo elektroda
X
logo elektroda
Advanced Search
logo elektroda

Orange FTTH: ONT Authorization by OLT (MAC, Password, Certificates) & TR-069 Provisioning Info

bigospoznan 16308 20
Best answers

How does Orange FTTH authorize an ONT/ONU on the OLT, and is its provisioning based on TR-069?

Orange FTTH does not authorize the ONT by MAC; the common mechanism is the PON serial number (PON SN), usually a 12-character identifier with a 4-letter vendor ID and 8 hexadecimal digits, though some deployments may also use a password or logical ID [#17307829] If you want your own ONU to work, the suggested method is to clone the SN from the working Orange Huawei PON module in the FB3, whose label starts with SMBS [#17999261] Using the same SN on one OLT port is not safe because one ONU can kick the other off, and in the worst case it may trigger an OLT alarm or suspension [#17998390] TR-069 is only one possible provisioning method; in GPON the standard management path is OMCI, and Orange’s Huawei/Alcatel ONTs are said to be managed via OMCI, which can push WAN profiles, PPPoE and even firewall/NAT settings [#17307829][#17998390] If you already have a transparent ONU, the easier approach is to keep it and connect your router behind it instead of trying to replace it [#17998390]
Generated by the language model.
ADVERTISEMENT
Treść została przetłumaczona polish » english Zobacz oryginalną wersję tematu
Report a violation of the law
Reply | New topic
  • #1 17191164
    bigospoznan
    Level 2  
    Posts: 2
    Board Language: polish
    Hello Dear Forumers,

    I want to connect my own ONT to Orange FTTH network.
    The question is why OLT authorizes ONT? MAC and password or is there also a certificate?
    Apparently someone managed to fire it on some Chinese insert ... but did not write what he set ...
    MAC on Funboxie3 is worse with a password ...

    PS. I know what the danger of connecting the trash to the FTTH network is. I connect the equipment that orange still has on offer but mine.

    Additional question - is provisiong in orange based on TR-069? Anyone know the parameters for the server? Login pass?

    best regards,

    Piotr
  • ADVERTISEMENT
  • #2 17193411
    KrzyCho.corp
    Level 10  
    Posts: 12
    Rate: 6
    Board Language: polish
    The FTTH network identifies ONT by MAC Address - it must be added to the base for it to work
  • #3 17307829
    DJTrueBeliever
    Level 18  
    Posts: 222
    Help: 15
    Rate: 20
    Board Language: polish
    KrzyCho.corp wrote:
    The FTTH network identifies ONT by MAC Address


    The first part is fine - he is identified, but the second is not - MAC has nothing to do with it, it is called PON SN (PON serial number) and has a strictly defined format - four ASCII characters (vendor-id) followed by eight digits hexadecimal (device-id). In some, ONU can change the reported SN, but not in all (depends on the manufacturer).
    And it is not the rule that this is how Olciak authorizes "his" - sometimes an alphanumeric password is involved, sometimes a logical ID (everything can be set), the mechanism with SN is, however, the easiest and most common, because even after resetting the ONU factory settings "gets along" with OLT and can download the configuration via OMCI.

    TR069 is just one of the options - OMCI is the standard in GPON, but many * PONs just can't use it, which is a pity - having well-configured OMCI you can easily leave the default password of the ONU administrator - even a customer can even change it and give him full access to the device panel - in case of problems, it is enough to reset it to factory settings and virtually "from place" has a working network again. (Through OMCI, OLT can upload any WAN configuration profile to ONU, including PPPoE or other key variables, and even firewall or natu rules.)

    As for the title question - if you find a way to "clone" SN ONU, the device will work without problems in the orange network. At the same time, as a man who has already installed a little different * PONs, please - we experiment only with functional devices that do not have damaged lasers and the ability to glow in fiber with something that clogs all communication in one of the directions.
  • ADVERTISEMENT
  • #5 17307906
    Jawi_P
    Level 36  
    Posts: 3177
    Help: 259
    Rate: 671
    Board Language: polish
    bigospoznan wrote:
    PS. I know what the danger of connecting the trash to the FTTH network is.

    Out of curiosity, I will ask what?
  • ADVERTISEMENT
  • #6 17307920
    DJTrueBeliever
    Level 18  
    Posts: 222
    Help: 15
    Rate: 20
    Board Language: polish
    Jawi_P wrote:
    Out of curiosity, I will ask what?

    It depends on what device you connect. The worst situation is how it shines with a laser with wavelengths equal to the transmitting or receiving waves and has no connection with GPON or the laser is simply released and "works as it wants" - such "ONU" can (and usually succeeds) paralyze all network communication.
    Why? The data stream from OLT is one for the entire network and the tips return to olta the same, only one, and the tips "stick" to it through TDMA - if we "shining" something interfering with the fiber with the data transferred to / from the terminals, neither the tips and olciak will not take much away except for senseless continuous light.

    // edit: I mean "all communication" all customers within the entire network , from OLT's optical channels connected to the same channel! The light does not forgive - here is a worse situation than in cable DOCSIS, because there some of the interference was suppressed by suppressors - here not, the levels are much too high and the signal-to-noise ratio must also be higher for the link to work as such.
  • #7 17308077
    Jawi_P
    Level 36  
    Posts: 3177
    Help: 259
    Rate: 671
    Board Language: polish
    I was completely unaware of this ;)
  • #8 17308935
    KrzyCho.corp
    Level 10  
    Posts: 12
    Rate: 6
    Board Language: polish
    DJTrueBeliever wrote:

    I mean "all communication" all customers within the entire network , from OLT's optical channels connected to the same channel!


    Not the entire network, only max 64 clients.
  • #9 17309236
    Jawi_P
    Level 36  
    Posts: 3177
    Help: 259
    Rate: 671
    Board Language: polish
    KrzyCho.corp wrote:
    Not the entire network, only max 64 clients.

    So all within one splitter? Or so?
  • #10 17310754
    KrzyCho.corp
    Level 10  
    Posts: 12
    Rate: 6
    Board Language: polish
    Jawi_P wrote:
    KrzyCho.corp wrote:
    Not the entire network, only max 64 clients.

    So all within one splitter? Or so?

    Basically yes, but not within one location. One splitter 1:64 or several graduated ones are connected to the port, e.g. 1: 4 + 4x 1:16, so that the multiplicity is 64 at the end. In other words, max 64 ONT can be connected to one port on the OLT card
  • #11 17998328
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    I will conquer the topic.
    I have a new GPON terminal Huawei echolife HG8010H which is the one that mounts orange with FB2.
    Can I change the serial number and MAC in it so that it obtains authorization (make a clone) ?.

    There is something here, probably: http://support.huawei.com/hedex/pages/EDOC100...133/02/resources/cmd/ont_modify(gponnew).html
  • #12 17998390
    DJTrueBeliever
    Level 18  
    Posts: 222
    Help: 15
    Rate: 20
    Board Language: polish
    You will not hook up to one olciak two ends with the same SN - at best one tip will throw the other, in the worst it may cause OLT suspension due to an emergency.

    The linked manual refers to OLT and tip management using OMCI - it's quite different. If you have a working transparent ONU, then you do not need to replace it - you connect your router directly to it.
    Another thing, if you got FB3 or other router with built-in non-replaceable ONU - then in fact its "cloning" would give you some benefits, of course assuming you would not want to use FB3 at all.
  • #13 17998805
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    Oh, you see exactly how you write. I have FB3 and Asus router. I do not want to double up, because then DDNS does not work in Asus and threads of access to hdd connected to Asus usb.
    The order from Orange is for exchange, but the technicians probably went to Majorca.
    I need to configure it myself, but I don't know exactly how to do it.
  • #14 17999152
    LucekB
    Network and Internet specialist
    Posts: 995
    Help: 143
    Rate: 137
    Board Language: polish
    If you enable DMZ on FB on the ASUSA address then you should have access to HDD ..?
  • #15 17999184
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    LucekB wrote:
    If you enable DMZ on FB on the ASUSA address then you should have access to HDD ..?

    It can't be done because it is on a different subnet and FB will not accept a local address from another pool.
    If I connect to the LAN, then yes, but DDNS will not work.
  • ADVERTISEMENT
  • #16 17999261
    DJTrueBeliever
    Level 18  
    Posts: 222
    Help: 15
    Rate: 20
    Board Language: polish
    You must clone in the ONU Huaweia serial number of the PON module from FB3 (this is the one that begins with the letters SMBS on the rating plate). Orange has olciaki mostly Huaweia (and several dozen pieces of Alcatel-Lucent), which, in any case, manage OMCI with those of him.

    LucekB wrote:
    As on FB you will enable DMZ

    This loses all protocols except TCP and UDP. And internet protocols are huge; you won't set up the L2TP / IPSec tunnel - that's why I hate double showers.
  • #17 17999417
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    How to make a clone on it without putting it on the programmer ?.
    Is the option of an external program to change SN ?.
    Tomorrow they are to be with me on FB2 for a replacement, but if I can't manage my HG8010H, I have to pay them PLN 129.
    Today there were my technical friends and they connected the GPON to me, but they did not connect because of this serial number (no authorization). So I'm on my own, actually on You ;) .
  • #18 17999459
    DJTrueBeliever
    Level 18  
    Posts: 222
    Help: 15
    Rate: 20
    Board Language: polish
    And after telnet / ssh with data telecomadmin / admintelecom can't do it?
  • #19 17999579
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    Pewnie tak, ale potrzebuję poprowadzenia za rączkę.
    Czyli np. Putty, sesje na SHH ustawiam, adres ip Gpon (192.168.100.1) i co dalej
    W sumie to lepszy Tera Term.

    Welcome Visiting Huawei Home Gateway
    Copyright by Huawei Technologies Co., Ltd.

    Login:root
    Password:
    Password is default value, please modify it!
    WAP>?
    amp add policy-stats pon
    amp add policy-stats port
    amp add stats gemport
    amp clear policy-stats pon
    amp clear policy-stats port
    amp clear stats gemport
    amp debug lswtable all
    amp del policy-stats pon
    amp del policy-stats port
    amp del stats gemport
    amp display efc
    amp display l2act
    amp display l2mac
    amp display sfc
    amp display userflow
    amp show
    ampcmd show car all
    ampcmd show car index
    ampcmd show emac stat
    ampcmd show flow all
    ampcmd show flow index
    ampcmd show log
    ampcmd show queue all
    ampcmd show queue index
    ampcmd trace all
    ampcmd trace cli
    ampcmd trace dpoe
    ampcmd trace drv
    ampcmd trace emac
    ampcmd trace emap
    ampcmd trace eth
    ampcmd trace gmac
    ampcmd trace gmap
    ampcmd trace onu
    ampcmd trace optic
    ampcmd trace qos
    backup cfg
    bbsp add policy-stats btv
    bbsp clear policy-stats btv all
    bbsp del policy-stats btv
    Broadband debug
    Broadband display
    Broadband stat
    chipdebug
    clear amp pq-stats
    clear file
    clear lastword
    clear pon statistics
    clear poncnt dnstatistic
    clear poncnt gemport upstatistic
    clear poncnt upstatistic
    clear port statistics
    collect debug info
    component delete all
    cpu debug off
    cpu debug on
    dbg
    debug ctp all
    debug ctp step
    debug dsp down msg
    debug dsp msg
    debug dsp up msg
    debug ffwd all
    debug ffwd event
    debug ffwd fwd
    debug ffwd lsw
    debug ffwd napt
    debug ffwd timer
    debug fw pktinfo num
    debug rtp stack
    debug sample mediastar
    debug vbr-fw all
    debug vbr-fw hook
    debug vbr-fw vbr-id
    debug vport all
    debug vport step
    display access mode
    display acl chain all
    display amp policy-stats pon
    display amp policy-stats port
    display amp pq-stats
    display amp stats gemport
    display apmpolicy
    display bbsp stats btv
    display bmsxml crc
    display boardItem
    display ctp all
    display ctp detail
    display deviceInfo
    display dsp channel para
    display dsp channel running status
    display dsp channel status
    display dsp chip stat
    display dsp codec status
    display dsp interrupt stat
    display epon ont info
    display equip test mode
    display equipId
    display equiptest status
    display ethoam ma info
    display ethoam md info
    display ethoam mep info
    display ethoam mep perf
    display ffwd all
    display ffwd stat
    display file
    display filter rf
    display flashlock status
    display flow
    display fw all
    display fw statistic
    display inner version
    display jb grid status
    display jb para
    display l2ffwd table
    display lanmac
    display lastword
    display log info
    display mac all
    display macaddress
    display machineItem
    display memory info
    display msg-queue
    display napt all
    display oaml2shell ethvlan
    display onu info
    display optic
    display optmode
    display patch information
    display pon statistics
    display poncnt dnstatistic
    display poncnt gemport upstatistic
    display poncnt upstatistic
    display portstatistics
    display pppoe_em result
    display productId
    display productmac
    display rf config
    display route
    display rtp stack channel stat
    display rtp stack para
    display rtp stack version
    display rtp statck chip stat
    display sn
    display startup info
    display swm bootstate
    display swm state
    display sysinfo
    display telnet access
    display timeout
    display vbridge info
    display vbridge nni-binding
    display vbridge port-binding
    display vbridge statistic
    display vbridge uni-binding
    display vbridge uplink-binding
    display vendorId
    display version
    display vport all
    display vport detail
    display wan layer all
    display wanmac
    display wifi pa type
    display wlanmac
    display zsp version
    get ip conntrack
    get iptables filter
    get iptables mangle
    get iptables nat
    get iptables raw
    get mac agingtime
    get ont oamfrequency
    get opm switch
    get optic debug info
    get optic par info
    get optic txmode
    get poncnt upgemport
    get port config
    get port isolate
    get port vlan
    get rogue status
    get testself
    get vlan auth
    get wlan enable
    ifconfig
    igmp clear statistics
    igmp get debug switch
    igmp get flow info
    igmp get global cfg
    igmp get multilmac
    igmp get port multicast config
    igmp get statistics
    igmp set debug switch
    ip -6 neigh
    ip -6 route
    ip -6 rule
    ip neigh
    ip route
    ip rule
    load pack
    logout
    maintain mode
    mid get
    mid off
    mid set
    netstat -na
    oamcmd clear log
    oamcmd debug
    oamcmd pdt show log
    oamcmd show flow
    oamcmd show log
    omcicmd alarm ctrl show
    omcicmd alarm show
    omcicmd clear log
    omcicmd clear msg stat
    omcicmd debug
    omcicmd error log
    omcicmd mib att show
    omcicmd mib copy show
    omcicmd mib show
    omcicmd mib stat show
    omcicmd pdt show log
    omcicmd pm show
    omcicmd show flow
    omcicmd show log
    omcicmd show msg stat
    omcicmd show olt type
    omcicmd show qos
    omcicmd show tcont table
    ping
    quit
    reset
    restore manufactory
    save data
    set ethportmirror
    set timeout
    set userpasswd
    setconsole
    su
    test monitor interface
    traceroute
    tunnel show all
    vbridge statistic clear
    vport statistic clear
    wap ll
    wap ls
    wap ps
    wap top
    WAP>
    ?
    amp add policy-stats pon
    amp add policy-stats port
    amp add stats gemport
    amp clear policy-stats pon
    amp clear policy-stats port
    amp clear stats gemport
    amp debug lswtable all
    amp del policy-stats pon
    amp del policy-stats port
    amp del stats gemport
    amp display efc
    amp display l2act
    amp display l2mac
    amp display sfc
    amp display userflow
    amp show
    ampcmd show car all
    ampcmd show car index
    ampcmd show emac stat
    ampcmd show flow all
    ampcmd show flow index
    ampcmd show log
    ampcmd show queue all
    ampcmd show queue index
    ampcmd trace all
    ampcmd trace cli
    ampcmd trace dpoe
    ampcmd trace drv
    ampcmd trace emac
    ampcmd trace emap
    ampcmd trace eth
    ampcmd trace gmac
    ampcmd trace gmap
    ampcmd trace onu
    ampcmd trace optic
    ampcmd trace qos
    backup cfg
    bbsp add policy-stats btv
    bbsp clear policy-stats btv all
    bbsp del policy-stats btv
    Broadband debug
    Broadband display
    Broadband stat
    chipdebug
    clear amp pq-stats
    clear file
    clear lastword
    clear pon statistics
    clear poncnt dnstatistic
    clear poncnt gemport upstatistic
    clear poncnt upstatistic
    clear port statistics
    collect debug info
    component delete all
    cpu debug off
    cpu debug on
    dbg
    debug ctp all
    debug ctp step
    debug dsp down msg
    debug dsp msg
    debug dsp up msg
    debug ffwd all
    debug ffwd event
    debug ffwd fwd
    debug ffwd lsw
    debug ffwd napt
    debug ffwd timer
    debug fw pktinfo num
    debug rtp stack
    debug sample mediastar
    debug vbr-fw all
    debug vbr-fw hook
    debug vbr-fw vbr-id
    debug vport all
    debug vport step
    display access mode
    display acl chain all
    display amp policy-stats pon
    display amp policy-stats port
    display amp pq-stats
    display amp stats gemport
    display apmpolicy
    display bbsp stats btv
    display bmsxml crc
    display boardItem
    display ctp all
    display ctp detail
    display deviceInfo
    display dsp channel para
    display dsp channel running status
    display dsp channel status
    display dsp chip stat
    display dsp codec status
    display dsp interrupt stat
    display epon ont info
    display equip test mode
    display equipId
    display equiptest status
    display ethoam ma info
    display ethoam md info
    display ethoam mep info
    display ethoam mep perf
    display ffwd all
    display ffwd stat
    display file
    display filter rf
    display flashlock status
    display flow
    display fw all
    display fw statistic
    display inner version
    display jb grid status
    display jb para
    display l2ffwd table
    display lanmac
    display lastword
    display log info
    display mac all
    display macaddress
    display machineItem
    display memory info
    display msg-queue
    display napt all
    display oaml2shell ethvlan
    display onu info
    display optic
    display optmode
    display patch information
    display pon statistics
    display poncnt dnstatistic
    display poncnt gemport upstatistic
    display poncnt upstatistic
    display portstatistics
    display pppoe_em result
    display productId
    display productmac
    display rf config
    display route
    display rtp stack channel stat
    display rtp stack para
    display rtp stack version
    display rtp statck chip stat
    display sn
    display startup info
    display swm bootstate
    display swm state
    display sysinfo
    display telnet access
    display timeout
    display vbridge info
    display vbridge nni-binding
    display vbridge port-binding
    display vbridge statistic
    display vbridge uni-binding
    display vbridge uplink-binding
    display vendorId
    display version
    display vport all
    display vport detail
    display wan layer all
    display wanmac
    display wifi pa type
    display wlanmac
    display zsp version
    get ip conntrack
    get iptables filter
    get iptables mangle
    get iptables nat
    get iptables raw
    get mac agingtime
    get ont oamfrequency
    get opm switch
    get optic debug info
    get optic par info
    get optic txmode
    get poncnt upgemport
    get port config
    get port isolate
    get port vlan
    get rogue status
    get testself
    get vlan auth
    get wlan enable
    ifconfig
    igmp clear statistics
    igmp get debug switch
    igmp get flow info
    igmp get global cfg
    igmp get multilmac
    igmp get port multicast config
    igmp get statistics
    igmp set debug switch
    ip -6 neigh
    ip -6 route
    ip -6 rule
    ip neigh
    ip route
    ip rule
    load pack
    logout
    maintain mode
    mid get
    mid off
    mid set
    netstat -na
    oamcmd clear log
    oamcmd debug
    oamcmd pdt show log
    oamcmd show flow
    oamcmd show log
    omcicmd alarm ctrl show
    omcicmd alarm show
    omcicmd clear log
    omcicmd clear msg stat
    omcicmd debug
    omcicmd error log
    omcicmd mib att show
    omcicmd mib copy show
    omcicmd mib show
    omcicmd mib stat show
    omcicmd pdt show log
    omcicmd pm show
    omcicmd show flow
    omcicmd show log
    omcicmd show msg stat
    omcicmd show olt type
    omcicmd show qos
    omcicmd show tcont table
    ping
    quit
    reset
    restore manufactory
    save data
    set ethportmirror
    set timeout
    set userpasswd
    setconsole
    su
    test monitor interface
    traceroute
    tunnel show all
    vbridge statistic clear
    vport statistic clear
    wap ll
    wap ls
    wap ps
    wap top
    WAP>
  • #20 18183177
    bigospoznan
    Level 2  
    Posts: 2
    Board Language: polish
    Orange FTTH: ONT Authorization by OLT (MAC, Password, Certificates) & TR-069 Provisioning Info

    in the HG8247H router I can edit the SN and GPON pass.
    A rather simple matter with the slogan in the Orange network.
    However, I don't know if I'm doing well with SN. As it was written on the sticker under FB3 and starts with SMBS is the vendor ID and the rest the correct number.
    in Huwei pastes the whole number of 12 characters and I take it as ASCII probably.
    And Huawei replaces it with HEX.
    But despite this, I do not grab the internet.
    What am I doing wrong?
  • #21 18184947
    Dulan
    Level 26  
    Posts: 1212
    Help: 26
    Rate: 246
    Board Language: polish
    bigospoznan wrote:
    Orange FTTH: ONT Authorization by OLT (MAC, Password, Certificates) & TR-069 Provisioning Info

    in the HG8247H router I can edit the SN and GPON pass.
    A rather simple matter with the slogan in the Orange network.
    However, I don't know if I'm doing well with SN. As it was written on the sticker under FB3 and starts with SMBS is the vendor ID and the rest the correct number.
    in Huwei pastes the whole number of 12 characters and I take it as ASCII probably.
    And Huawei replaces it with HEX.
    But despite this, I do not grab the internet.
    What am I doing wrong?


    If you can change SN, enter as many characters as in the original.
    From what I remember, I only entered characters in what's in brackets.
Reply | New topic
Report a violation of the law

Topic summary

✨ The discussion revolves around connecting a personal Optical Network Terminal (ONT) to the Orange FTTH network, focusing on the authorization process by the Optical Line Terminal (OLT). Key points include the identification of ONTs by MAC addresses and PON serial numbers (PON SN), with some users noting that the serial number format is vendor-specific. The conversation also touches on the potential risks of using non-standard ONTs, including network disruption. Additionally, TR-069 provisioning is mentioned as one of the options for configuration, with OMCI being the standard for GPON networks. Users share insights on cloning serial numbers and MAC addresses for authorization, particularly with Huawei devices, and discuss the implications of connecting multiple devices to the same OLT port.
Generated by the language model.

FAQ

TL;DR: GPON ONTs authenticate by PON Serial Number: 4 ASCII vendor‑id + 8 hex digits. "the mechanism with SN is, however, the easiest and most common". To replace Funbox, clone the PON SN; MAC and TR‑069 aren’t required. [Elektroda, DJTrueBeliever, post #17307829]

Why it matters: This helps Orange FTTH users run their own ONT/router safely, fix double‑NAT issues, and keep VPN/DDNS working.

Who this is for: Orange FTTH users asking how OLT authorization works and how to provision third‑party ONTs.

Quick Facts

Does Orange authorize ONTs by MAC, password, certificates, or serial number?

Orange GPON authorizes by PON Serial Number, not MAC. The SN has a strict 12‑character format. Some setups also use an alphanumeric password or a logical ID, but SN matching is the common baseline. After authorization, the ONU can pull config via OMCI. As one expert put it, "MAC has nothing to do with it." [Elektroda, DJTrueBeliever, post #17307829]

What is the PON Serial Number (SN) format on Orange GPON?

The PON SN is 12 characters: four ASCII characters (vendor‑id) followed by eight hexadecimal digits (device‑id). That is the identifier the OLT expects for authorization. Some ONTs allow editing the reported SN; others do not. Always input the SN exactly in this 4+8 format to match the operator’s records. Quote: "four ASCII characters (vendor-id) followed by eight digits hexadecimal (device-id)." [Elektroda, DJTrueBeliever, post #17307829]

Can I use my own ONT on Orange by cloning the Funbox 3 PON SN?

Yes, if you clone the PON SN from the Funbox’s GPON module into your ONT. On Funbox 3, the printed SN "begins with the letters SMBS" on the label. Ensure only one ONT with that SN is connected during testing. This approach helps avoid double NAT when using your own router behind a standalone ONT. [Elektroda, DJTrueBeliever, post #17999261]

What happens if two ONTs share the same PON SN on the same OLT?

Do not do this. "At best one tip will throw the other" off the PON. In the worst case, the OLT can enter an emergency state and suspend operation. Always disconnect the original Funbox before testing a cloned SN on a third‑party ONT. This is an edge case that can disrupt service. [Elektroda, DJTrueBeliever, post #17998390]

Does Orange use TR‑069 for provisioning? Do I need server credentials?

OMCI is the GPON standard and handles provisioning from the OLT. TR‑069 is optional. With well‑configured OMCI, the OLT can deliver WAN profiles like PPPoE and even firewall/NAT rules. You don’t need TR‑069 server parameters to bring an ONT online. Quote: "TR069 is just one of the options – OMCI is the standard in GPON." [Elektroda, DJTrueBeliever, post #17307829]

How do I change the PON SN on a Huawei HG8247H?

Some HG8247H firmware exposes fields to edit the GPON SN and GPON password. How‑to:
  1. Log into the ONT’s admin UI.
  2. Open the GPON settings page and enter the exact 12‑character SN and GPON password.
  3. Save, reboot, and check registration; ensure only one ONT with that SN is online. This mirrors user reports of editing SN and password directly on HG8247H. [Elektroda, bigospoznan, post #18183177]

Where do I find the Funbox 3 PON SN to clone?

Check the Funbox 3 rating plate. The GPON module’s serial number starts with "SMBS". Use that exact 12‑character PON SN when configuring your third‑party ONT. Ensure the Funbox is disconnected when testing the new ONT to avoid duplicate SN on the PON. Quote: "begins with the letters SMBS." [Elektroda, DJTrueBeliever, post #17999261]

My ONT shows HEX when I enter ASCII SN. What should I input?

Enter the SN exactly as printed: 12 characters in the 4 ASCII + 8 hex format. Some ONTs display internal hex representations, but the OLT expects that defined format. Do not convert the ASCII vendor code to hex yourself. "MAC has nothing to do with it" for GPON authorization here. [Elektroda, DJTrueBeliever, post #17307829]

What can go wrong if I connect a non‑compliant or damaged ONT?

A faulty laser or misaligned optics can flood the fiber and break TDMA timing. That can "paralyze all network communication" on the affected optical channel. Always use compliant hardware and never test questionable optics on a live PON. This failure mode impacts real users and can trigger operator intervention. [Elektroda, DJTrueBeliever, post #17307920]

How many customers could be affected by a bad ONT on the same PON?

A single GPON port typically serves up to 64 ONTs. This can be a single 1:64 split or cascaded, such as 1:4 then 4×1:16. In practice, a rogue ONT can disrupt that entire group on the same PON port. Quote: "max 64 ONT can be connected to one port on the OLT card." [Elektroda, KrzyCho.corp, post #17310754]

Is the MAC address ever used to authorize ONTs on Orange FTTH?

No. Authorization uses the GPON PON Serial Number, not the Ethernet MAC. The OLT matches the SN in a strict 12‑character format. While some networks can add a password or logical ID, the SN match is the baseline. Quote: "MAC has nothing to do with it." [Elektroda, DJTrueBeliever, post #17307829]

Can I change the SN/MAC on a Huawei EchoLife HG8010H using that Huawei command link?

No; that documentation targets OLT management via OMCI, not local ONT self‑configuration. To replace a built‑in ONT (e.g., Funbox 3), cloning its PON SN in your ONT is what helps. If you already have a transparent ONU, connect your router directly without SN cloning. Quote: "The linked manual refers to OLT... it’s quite different." [Elektroda, DJTrueBeliever, post #17998390]

How do I access Huawei ONT advanced options via Telnet/SSH?

Some Huawei ONTs accept telecomadmin/admintelecom over Telnet/SSH for deeper settings. Access depends on firmware and operator locks. Use a terminal (e.g., PuTTY), connect to the ONT IP, and try those credentials. Change passwords and document changes. Proceed carefully to avoid locking yourself out or breaking provisioning. [Elektroda, DJTrueBeliever, post #17999459]

Will Funbox DMZ fix DDNS or VPN issues on my Asus behind it?

DMZ forwards only TCP/UDP, so several VPN types will still fail. "This loses all protocols except TCP and UDP... you won’t set up the L2TP/IPSec tunnel." To avoid double NAT, use a standalone ONT with the correct PON SN and your router as the edge device. [Elektroda, DJTrueBeliever, post #17999261]

Do I need Orange’s TR‑069 server address and login to provision my ONT?

No. With GPON, the OLT provisions the ONU via OMCI, including PPPoE and firewall/NAT profiles. TR‑069 may exist but is not required for the ONT to come online. Focus on matching the PON SN and any required GPON password. Quote: "TR069 is just one of the options." [Elektroda, DJTrueBeliever, post #17307829]
Generated by the language model.
ADVERTISEMENT