This is how it works for me previously - using ODI XPON stick. but i route/fwd the VLAN and bridge it to 1 eth port and assigned FreePBX raspberry PI to get the VLAN400 IP.

Now it's not working - seems like VLAN400 is not able to get IP anymore. Torching the sfp1-plus interface I can see that the DHCP server from VLAN400 is sending offer but without tagged VLAN id 400.

Another weird observation - I could get the IP from DHCP after I bridge VLAN400+sfp1-plus+any eth port or i put dhcp client on that new bridge - but it won't be able to route/traffic not working even after static route added.

D-Link DPN-FX3060V has new firmware (V1.1.2)

my PON Stick also get new update to follow change of V1.1.2 ensure follow TM Standard.

TM show me this:


TM toke notice that my first 2Gbps Install speedtest result was amazing, rise suspicious  


We have run several testing on PON Stick that I experiment,
Then TM show this when my PON Stick is set doesn't reflect back properly, I forgot one command

^^^ TM can find who improper Stick DIY, in-case your PON Stick cannot use, it's forbidden for me to help > NDA

Also suggest a unique VendorId and special MIB Entity to validate my PON Stick

I do this to TM panel:


not sure either I want to use ANIG (Anime GPON) or NEKO or NEMU,

so I put ANIG VendorId as ONT S/N and NEKO as VendorId

Another bad happening...
There already one case that disturb whole Taman Internet,
they didn't tell what cause, but upon checking the user live is not from me (I compare to shipping address)
so, I safe from this trouble at least...

You must know, Fiber Internet is SHARED line,

from one stranding fiber split into multiple subscriber, one rouge ONT can disturb other internet!

Bad ONT can broke OLT QoS and you giving unfair to others!!

Event like this just not nice!

You know what, non-Unifi pay TM for fiber access is RM5/month/user
This very reasons speed are some 90%, some are +100%

Next Gen PON will be Unifi exclusive only, meanwhile non-Unifi stuck at GPON indefinitely (eg: unless TM rise monthly access fee to Maxis to access Next Gen PON)

1. What PON technology are they moving towards? XGPON? XGSPON? Or straight to 50GPON?
> I don't know, maybe this

2. Does it means 800Mbps FSU will get the new tech? Or it is reserved for new packages with even faster speed next year?
> No, what been told: under <= 800M will stay with GPON

3. I am also curious on what is the arrangement between you and TM. If what you said is true, that means the remaining lifespan of your GPON stick business is short unless you expect lower speed tier customer to be interested in GPON stick but I am sure we all know this is a nerd thing.
> Thats secret, I here just to help and ease with the setup, so I can ensure to TM that my device not doing some nasty stuff (not to trust user capable to setup properly)

4. On the other hand, have you consider working on a future version of xPON stick right now, before TM launch whatever new service down the road?
4a. Any idea when it is coming?
> No ETA on this, they told start with Business first in KL (trial run), there are around ~500K of 2Gbps subscriber, use of PON Stick not even 0.01%, many stay with stock D-Link and they are just fine with 1+1 configuration

5. I am also wondering if their new generation network will actually say goodbye to PPPoE, offer static IPv6 Prefix like /56 or shorter.
> No, PPPoE is to stay, there are PPPoE Hardware Acceleration Router like Mikrotik. /56 for business only, for home use NAT64

Like I said before, take this info grain of salt, I my self not believe, if TM did, there will take longer even longer to upgrade the OLT

Also, many just want 1Gbps upload (system/hosting), they don't mind 1+1 download

I have returned.

I have a bad news.

So starting from September, I get constant packet loss issue whenever my uploads are close to Gigabit and sometimes it will terminate the PPPoE session and re-establishes pretty soon after.

Two months of back-and-forth with TM yields nothing but constant frustration and two fiber repairs that cost me RM 150 each as well as unsolved case.

I got fed up and finally reported to MCMC on November 10 and told them that they kind of already given up with this because even the TMpoint peeps at IOI City Mall told me to report to MCMC after they saw the ticket status.

It is now one month since that and TM did not reply to my MCMC complaint.
SOOOOOOO with that, I have created a beautiful website called https://howfuccedis.my/ping/charts to show them how it looks like from the customer point of view about the internet experience.

These charts are 100% live and interactive, and instructions on how to utilize the chart interaction are included. History should go up to one month back (except on Optiplex 5050 because I just recently updated the router, so the chart data is gone)

Network is something like this:

For everyone here, enjoy the shitfuckery known as UniFi """""Ultra""""" Experience!

For TM people that lurks here, hi, and CAN YOU FIND SOMEONE COMPETENT ENOUGH TO LOOK AT MY ISSUE. My MCMC report ID is TC231110-00050.

Edit: updated network map

Fiber receive is between -18 to -20 dBm, so that's sorted. Already did two fiber repairs due to broken fiber and too many splices (5 from DP to the ONU)
For changing the ONU, I tried.

They wanted to change my router, but they decided to do firmware upgrades first which the last upgrade was two weeks ago, which obviously doesn't work.

They upgraded the firmware from V1.0.6 to V1.1.0 to V1.1.2 within two weeks since I reported to MCMC.

V1.1.2 firmware is so bad that it did this to itself:


Now they completely ghosted me and had zero communication with me.

I have completely removed their router away from the whole equation at this point as I will probably commit warcrime on that router if I use it again.

I even tried the old ZTE F620 last week which doesn't help much either.


This is just pure cursed.

Apparently Mikrotik detect differently on SFP Supported



I think making Addr 0x06:0x00 treated as 10G baseSR LR

need read more on think, in meantime, might ask Mikrotik to backport

Yea right, perhaps buy Mikrotik MultiGig RJ45 and examine the EEPROM that way

so far HiSGMII and 2500Base-X only used by GPON, no typical transceiver ever use it

Upon checking VLAN400, didn't get IP Address from Mikrotik for awhile, I thought VLAN400 no longer bridged,

come to mind, how about bridge it and test from Proxmox VM


and check in the OS, got IP address here, but not on Mikrotik


I thought my Nijika Firmware can't bridge VLAN400 from VEIP (0x601/0xe01), apparently it has DHCP Filter which prevent Mikrotik from request, none of DHCP Option (12 & 61) works

so, to test, must bridge and test from the PC or D-Link RG Mode it self

Here Wireshark Capture that run on VM which is able to get IP Address
Later I try capture D-Link

Research on D-Link DPN-FX3060V to find proprietary OMCI and Emulate for PON Stick get side track...😅

They managed to add Wireguard and Dante SOCKS Proxy inside D-Link DPN-FX3060V,
Using my RTL960x Firmware tool and they start reverse engineer ARM64 build,

as ARM64 is well known, documentation is everywhere, no need to use Buildroot, so compiling is quite simple and rebuild the Kernel

They send me this


Speed Results 194.124.38.17 (CGNAT)


SSH from WAN


They plan to infect all DPN-FX3060 including both and all version, the IoT daemon has little (or none) on the instruction, buffer overflow exploit can be done, so RCE easier.
Since most Router has two rootfs, flashing infected inactive rootfs and reboot to infected rootfs, then "dd" from active rootfs to another rootfs, this way infecting only do once only.

tldr;
1. RCE the DPN-FX3060
2. scp "infected_rootfs" to /tmp
3. dd "/tmp/infected_rootfs" to "/dev/mtdX" (depend which is active and not)
4. change non volatile to instruct to boot infected_rootfs
5. reboot
6. once boot, dd the infected_rootfs to previous rootfs

they plan to modify the uboot making resistance from flashing good firmware.

should submit and report this? I guess they don't really give me how they do it...

Well, both use same SDK, Reverse Engineer RTL960x has been done before COVID, up to this point understand well,
Thing is, more and more RTL960x based router on the market, up to OEM how they wrote

LTS Linux Kernel 5.10.70

the Kernel and Firmware has Proprietary driver such as OMCI, PON Driver, LAN, 2.5GbE, WiFi, VoIP

need decompile whole thing and build for OpenWRT, but for OMCI and PON is very hard, need deep understanding

the Kernel can be updated as follow latest Linux glibc, as for now using version 2.30 (year 2018-2019)

being old kernel, highly suspected exploit if found or even more RCE entry.

Even with private VLAN 400 only?

Currently my setup is ONU stick to converter to 2.5G switch, pass through port 1 tagged, 400 port 3 untagged, 500 port 5 untagged

Does it still have the ability to hop through all those to reach the D-Link ONU?

Geez.... Those fellas are beyond thick....

I started to set up my ROS 7++... Router (L009) using the old Subtel YouTube... Also damn sakit kepala...

I gave up thinking I could do the Pon thing.
Managed to get the CAP AX SETUP as AP, after 3-4 weeks. Lulz.... Mikrotik is not that easy.

woooo... that is an interesting take.
yeah, the noobs who buy Pon stick probably have those adventurer type of mindset.... why would they call tm for tech support.... grinding it out and making it happen!!!!

but surely like ants in hot pans.... while doing the setup, I had to make sure, I do not impact anyone else who might need internet.... it is hectic.... any personally, I had to have another phone/tablet with internet while I did my half ass setup.

at the end of it, I was happy, but the process is definitely something to talk about.  ROS7 changed quite a bit of setting different from ROS6.

I got multiple call from TM (maintenance and vendor) saying (roughly)



after 5 days++, I forgot that guy, suddenly so called OLT Vendor has contacted me


last year have issue like this, then now happening again...

Thing is... every area OLT is build different, configured different even same OLT brands

TM has outsourced to vendor for managing OLT, even look so "Universal"

Actually not so "Universal"

Fiberhome is the most notorious to work with, 2nd place Alcatel/Lucent (Nokia)

There are many private OMCI, this what I had to delete from online because it disturb their OLT according to OLT Vendor
creating unnecessary error that had them to investigate even come one subscriber, vendor need reach their Key Performance Indicators ensure OLT less downtime, if not there will be consequences

That's the beauty of Out Sourcing, TM can cut RM to vendor when their KPI is low, this how customer can get a rebate~

Like I said before, have two side (two team),
one is allow as long setup is correct and customer are happy
one is dislike as make their work harder

I did call it after OLT vendor called, I told him not to sell my name just solve the issue,
because calling 100, it involved multiple party and I willing swap his PON Stick just for solve Technician and Vendor issue and clear my name on TM
still, I haven't received his PON Stick yet (I guess he using Black D-Link?, no need to use PON Stick)

vendor said is clear, OLT cannot accept and whitelist the PON Stick

we have discussed, most of them insist to support of selling PON Stick as long OLT not making any false Alarm and got few friend who work at TM can help me to assist when issue come

as long as customer is happy with their fancy equipment, they don't mind.

if PON stick issue, I can ask my friend to check customer via PPPoE Id or PLOAM Password what is the issue so I can fix and prepare OMCI,
basically outside of official help, but I still can try make it work

OLT Vendor Id 0x00 can be FHTT (Fiberhome) or other brand, mostly 100% is FHTT I facing behaving odd issue, still can solve by adjusting OMCI.ini file

If happening again, I got my backup plan.

This depend on the OLT, because VEIP is very troublesome to deal with especially with ALCL OLT

for me, VLAN400 exclusive on VEIP only
some user on ALCL, VLAN400 exist on PPTP and VEIP
some user on ALCL even all VLAN exist on both PPTP & VEIP <-- this make D-Link bricked when bridge mode, need to backup D-Link MAC Address and License Key and erase config partition.

if VLAN400 exist only on VEIP, need to hack and bridge on VLAN209 PPTP (Merge the T-CONT), it can clash DHCP, but the hack works

Yes, merging VLAN209 and 400 can trigger the Alarm, don't worry about it as I told the Technician to mark ignore (as they can't assign VLAN400 on PPTP, it appear ALCL random assignment even same profile is set)