OPNsense Router 10Gbps XPS-PON?

    • Hello everyone

    I’m looking for a solution to use 10 Gbps with public IPs and Internet-Backup in my company.

    On the software side, I prefer a direct solution (without a Swisscom modem in between)* with OPNsense.
    *(Swisscom does not yet have a 10 Gbps solution for this application.)

    On the hardware side, it is clear that an SFP+ Anschluss is required for the WAN port.

    I would be grateful for any productive tips and experiences.

    If XPS-PON is identical to the previous FTTH, it should work if you use the following VLANs on the WAN port:

    VLAN 10 (DHCP -> Swisscom TV, VOIP,…)

    VLAN 11 (PPPoE -> Public IP,…)

    Does anyone have experience with:

    • XPS-PON (10 Gbps “Internet L”) and your own router?

    • Own router (OPNsense/pfSense) and Internet-Backup (with public IPs)?

    Show original language (German)

    @Sennhauser-ITS here is a link for free routers (in Spain) [https://forum.mikrotik.com/viewtopic.php?f=3&t=116364](https://forum.mikrotik.com/ viewtopic.php?f=3&t=116364)

    https://forum.openwrt.org/t/support-ma5671a-sfp-gpon/48042/18

    1. The problem is that the OLT MA5800 at Swisscom has been configured so that only Huawei ONT is currently permitted.

    2. The problem with the fixed IP is that the router has to register once via DCHP (IP-TV, IP telephony, backup via mobile communications) and once via PPOE for the fixed IPs.

    These are two different platforms.

    Show original language (German)

    @user109

    Thank you for the information:

    1. Doesn’t really concern me or am I making a mistake?
      Especially since I plan to use the SFP+ “XPS-PON” module from Swisscom anyway, everything should be fine when it comes to the fiber optic connection (transmission technology, wavelengths).
    1. I don’t see any problem, there are two VLANs (10 and 11, as long as this is the same for 10Gbps as for 1Gbps).
      Can I configure and continue to use both as physical or virtual WAN ports in OPNsense.

    Internet-Backup worries me more because with the current setup (Centro Business 2) my public IP addresses are also protected via it.

    -> I think I have to do a test setup with the existing 1Gbps connection (on Internet-Backup nothing should change with the 10Gbps).

    Show original language (German)

    @Sennhauser-ITS

    You are making another mistake in thinking about XGS-PON, because the SFP module and an SFP+ port alone are not enough for a functioning connection.

    Due to optical splitting with

    So that not all 32 can read everyone’s entire communication, XGS-PON has additional encryption via ONT, and the ONT is not located on the SFP module, but on the router.

    Simply plugging the Swisscom SFP module into an SFP slot is far from enough to be able to operate an XGS-PON-Anschluss.

    Show original language (German)

    Hobby-Nerd ohne wirtschaftliche Abhängigkeiten zur Swisscom

    @Sennhauser-ITS is the same as with the G.Fast module from Swisscom. This module alone without drivers (which are anchored in the router) does not work on the SFP-Anschluss. Ditto XS-PON module. Maybe it will work with the modules I sent you in the link. Trying makes you smart.

    Show original language (German)
    4 days later