Manny Veloso manny.veloso at smartrg.com
Thu Apr 9 12:57:22 EDT 2015 

For managing bridge mode, they just bridge some other PVCs and leave the main one up, and map the LAN ports to those other PVCs. That way they have a managed bridge without the extra config. Also, they usually default the device before it goes back out, and some (most?) of them use the ACS to push new credentials down; if you have default creds you’re in a walled garden that can only get to the ACS and a few other websites, like the ISP support section etc.

The accounting is an interesting thing, and I wonder why that’s not a problem. I guess the traffic is so small that it doesn’t really matter that much. Devices normally only check in once a day or so, which is like 2-4k.

--
Manny Veloso
Sr. Solutions Engineer
Smartrg.com

From: Dan Morphis <dan at milkcarton.com<mailto:dan at milkcarton.com>>
Reply-To: Community support for GenieACS users <users at lists.genieacs.com<mailto:users at lists.genieacs.com>>
Date: Wednesday, April 8, 2015 at 2:11 PM
To: Community support for GenieACS users <users at lists.genieacs.com<mailto:users at lists.genieacs.com>>
Subject: Re:

Doing management over a separate PVC allows you to manage bridged mode CPE's. It will also allow you to disable the pppoe credentials of the previous customer, and not require the new customer factory reset the CPE in order for the CPE to be reprovisioned.

Another reason for us doing the management over a separate PVC is accounting. We serve an area where its incredibly expensive to bandwidth and so we usage bill. Doing the management over a different PVC allows us to keep the traffic for each separate, and bill our customers for only their usage.

-dan

On Wed, Apr 8, 2015 at 10:57 AM, Manny Veloso <manny.veloso at smartrg.com<mailto:manny.veloso at smartrg.com>> wrote:
Most of our customers just do management over the public network. There was one that had a PVC for management; I’m not sure why they did. Since CPEs do SSL, the thought is that it’s good enough.

--
Manny Veloso
Sr. Solutions Engineer
Smartrg.com

From: Dan Morphis <dan at milkcarton.com<mailto:dan at milkcarton.com>>
Reply-To: Community support for GenieACS users <users at lists.genieacs.com<mailto:users at lists.genieacs.com>>
Date: Wednesday, April 8, 2015 at 11:49 AM
To: Community support for GenieACS users <users at lists.genieacs.com<mailto:users at lists.genieacs.com>>
Subject: Re:

We are going to use a separate management WAN, in private IP space, but one group of people want to do DNS names, while the other group wants IP. So I thought I would poll and see how others are doing it. Because of technical reasons, we have to use the IP - modems don't do dual DNS stacks and we don't want to resolve all DNS on the management interface.

As for DHCP option, I found a better way of doing this yesterday:
# Define a custom option space for tr069 options
option space tr069;
option tr069.acs-server-url code 1 = text;
vendor-option-space tr069;
option tr069.acs-server-url “http://url/of/acs/server”<http://url/of/acs/server%E2%80%9D>;

On the few modems we've tried, this works perfectly. And this value overrides the ACS URL that is preconfigured into the CPE.

-dan

On Wed, Apr 8, 2015 at 9:20 AM, Zaid Abdulla <zaid at genieacs.com<mailto:zaid at genieacs.com>> wrote:
On Tue, Apr 7, 2015, at 07:35 PM, Dan Morphis wrote:
> I have a few questions about how other people are doing their CPE ACS
implementation.
>
> Are you using a single VCI/VPI and doing the management
over the public internet? Or do you have a separate VCI/VPI specifically
 for management? Do you have bridged mode modems connected to your ACS?
>
> If you are doing management over a separate interface, for the management url, are you using DNS or hard-coded IP? Are you doing split DNS?

I'd recommend using a separate WAN connection for management when
possible. As for using a domain name vs an IP, I prefer using IP because
then you deal with one less point of failure (i.e. DNS). Though I don't
have a strong opinion about that.

> How are you assigning the ACS url to the CPE? Factory config, or DHCP option 60[http://blog.pierky.com/acs-url-configuration-via-dhcp-vendor-specific-information/]?

I personally haven't used the DHCP option because I try to minimize the
number of client features I have to rely on for a smoother operation.
Perhaps my opinion will change when TR-069 is more wide spread and
client implementations improve.

Zaid
_______________________________________________
Users mailing list
Users at lists.genieacs.com<mailto:Users at lists.genieacs.com>
http://lists.genieacs.com/mailman/listinfo/users


_______________________________________________
Users mailing list
Users at lists.genieacs.com<mailto:Users at lists.genieacs.com>
http://lists.genieacs.com/mailman/listinfo/users


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.genieacs.com/pipermail/users/attachments/20150409/39b9aaeb/attachment.html>

More information about the Users mailing list