<html><head></head><body>Let’s assume I’ve only ever picked up fiber cable and never actually installed or managed a network with it. From your diagram, I am picking up that the ONT is the device where the fiber terminates in my house, and the ER-4 is an Ubiquiti Edge Router. <div><br></div><div>I am likely to be getting an Ubiquiti UDM Pro to replace my pfSense box (given that I no longer need to care about tracking total bytes across the WAN interface). This gateway device has SFP+ ports. Would those factor into your diagram in any way?</div><div><br></div><div>How does using the AT&T gateway device as an authenticator only device change the IPv6 reliability?<br> <p class="gmail_quote" style="color:#000;">On February 13, 2022 at 09:43:29, Derek Atkins (<a href="mailto:derek@ihtfp.com">derek@ihtfp.com</a>) wrote:</p> <blockquote type="cite" class="gmail_quote"><span><div><div></div><div>Just a small correction -- while AT&T does require their box to be online
<br>for 802.1x authentication, you can absolutely design a network where the
<br>AT&T box is not in the data path! Indeed, I've done that here. Basically
<br>my network looks like:
<br>
<br>--fiber-- [ONT] ---- [ ER-4 ] --- LAN
<br> |
<br> [AT&T Box]
<br>
<br>Using EAP Proxy and some firewall rules allows this to work and -- viola
<br>-- AT&T box is no longer involved in your day-to-day data usage.
<br>
<br>-derek
<br>
<br>On Sun, February 13, 2022 9:23 am, James Sumners \(ALE\) via Ale wrote:
<br><blockquote type="cite">Sounding a lot like I’ll be hoping Comcast actually tries to compete now
<br>that AT&T has brought actual broadband to my area. 😔
<br>
<br>
<br>On February 12, 2022 at 19:17:58, Bryan L. Gay (ale@bryangay.com) wrote:
<br>
<br>I had both Comcast and AT&T Fiber for years in Kennesaw. I was never able
<br>to get IPv6 delegation working reliably on AT&T, even after they stopped
<br>doing 6rd. I have Comcast now at the new place, 1.2Gbps downlink, and have
<br>never had an issue with Comcast's IPv6. AT&T just never seemed to get
<br>their act together. While having 1Gbps symmetric over IPv4 was great, and
<br>it was less expensive, I'm happily on Comcast, now. AT&T requires you use
<br>their gateway, which introduces other recurring problems. On Comcast, I
<br>own my own DOCSIS dumb modem.
<br>
<br>On Fri, Feb 11, 2022, 17:06 James Sumners (ALE) via Ale <ale@ale.org>
<br>wrote:
<br>
<br>
<br>Earlier today AT&T attached some fiber to the pole directly across the
<br>street from my driveway. I’m sure it will take them another month or two
<br>to activate the line, but I want to go ahead and solicit some knowledge
<br>from you folks.
<br>
<br>Currently, I’m on Comcast (plain residential). I despise the business, but
<br>their network people are top notch and have rolled out a nice stable IPv6
<br>network. They assign my WAN interface a `/128` and allow network
<br>assignments via a `/64` or `/60` prefix delegation over DHCPv6. The `/60`
<br>allows me to create multiple VLANs in my house for things like IoT devices
<br>separate from my primary devices.
<br>
<br>Does anyone have experience with AT&T’s IPv6 implementation? Would
<br>switching to them be mostly transparent in this regard? Are there any
<br>“gotchas” that I should be aware of?
<br>_______________________________________________
<br>Ale mailing list
<br>Ale@ale.org
<br>https://mail.ale.org/mailman/listinfo/ale
<br>See JOBS, ANNOUNCE and SCHOOLS lists at
<br>http://mail.ale.org/mailman/listinfo
<br>_______________________________________________
<br>Ale mailing list
<br>Ale@ale.org
<br>https://mail.ale.org/mailman/listinfo/ale
<br>See JOBS, ANNOUNCE and SCHOOLS lists at
<br>http://mail.ale.org/mailman/listinfo
<br>
<br></blockquote>
<br>
<br>--
<br> Derek Atkins 617-623-3745
<br> derek@ihtfp.com www.ihtfp.com
<br> Computer and Internet Security Consultant
<br>
<br></div></div></span></blockquote> <br><div class="gmail_signature"></div>
</div></body></html>