I started experiencing issues after configuring my Pace 5268ac modem from ATT for DMZ+ mode to my Ubiquiti UDM Pro router.
- Git Checkouts and pulls would hang at times
- Blocks NTP packets!
- Docker container downloads would hang.
There are a few ways to bypass the ATT RG:
- Plug in the RG and let it handle the cert negotiation. Spoof the RG mac address on the UDMP, unplug the RG and plug in the UDMP. Repeat if power goes off. LOL!
- Extract certificates and use something like wpa_supplicant. On the 2Wire 5286ac, extracting those certificates is no small task, and involved cracking open the case and breaking out the solder-gun. No thanks. You can buy certs on ebay for $40.
- 802.1x switching and proxying.
802.1x switching with eap_proxy
Checkout eap_proxy-udmpro which runs a container on the UDM Pro router than can route packets to the Pace modem for 802.1X auth requests. Once that’s done, the rest of the traffic will start flowing as expected. I had to buy a 1G SFP adapter to get this to work.
I’m having success with this, but sometimes the container does not start back up if the UDM reboots.
- AT&T Gigabit Fiber Modem Bypass Using UniFi USG — medium.com/@mrtcve
- Can’t clone git repositories when using USG - community.ui.com
- UDM Pro + Pace 5268ac Modem Bypass - At&t Fiber - r/Ubiquiti
- Bypassing AT&T Residential Gateways with MikroTik - https://forum.mikrotik.com