If you unplug the coax cable from the cable box (may need to restart the box), you may be able to switch to bridge mode in the web interface of the box. At least that used to work. Depending on your router, CG-NAT (required for IPv4 with Yallo) may or may not work with bridge mode.
Could someone please clarify what fibre technology is installed by swisscom for residential areas as it seems to determine what type of module is required on the router ie, AON or XGS-PON. When I go to IWay to determine what fibre speed to choose if its 10Gbit the router would come with XGS-PONS, if I select a lower speed than its AON. But the physical fibre infrastructure to my apartment doesnt change, so why does choosing a type of speed change the interface thats provided on the router? Just curious about this I have no clue about this networking tech
Neat trick and it works. I thought I had a capable router (Asus XT8), but it does not support DS-Lite… oh well 
In any case thank you very much for your quick answer!
I have XGS-PON by Swisscom.
It’s not easy to say which fiber technology is used by which ISP. Most of the time, it’s both!
XGS-PON is the technology used in 10Gbit fiber speeds. You never get 10Gbit because your line is shared with other users, and your bandwidth will depend on other’s simultaneous useage. This technology is called Peer To Multi Peer (P2MP).
Even if you have your own fiber line, on the other side (somewhere up the road, or maybe even down in your basement of your building), your line is mixed with other’s (most likely up to 10 other people max). On your fiber line, you have trafic for all those people and your router decodes the different signals and only keeps the ones that concern you (I am not aware that you can decrypt your neighbor’s trafic).
For 1 Gbit, your trafic is the only one on your fiber line and is directly connected to the ISP’s switch. This is called Peer To Peer (P2P). With this technology, speeds can be much higher than 1 Gbit (if you want, you can get for example the fastest internet in Switerland at 25 Gbit with ISP init7).
There was an ongoing debate that the fiber rollout should be P2P instead of P2MP. The ISP init7 initiated this requirement and now Swisscom has to follow this new law, but it will take quite some time to upgrade the infrastructure everywhere.
2 Likes
Sorry. What did they initiate? And how did they get to decide?
They lobbied for it I guess, regulators decide.
(And p2p seems a lot more future proof, I guess swisscom wanted to do things the cheaper way)
I found the answer: P2MP puts smaller ISPs at a disadvantage so Init7 complained to the regulator to stop this and avoid bigger ISPs from getting a cost advantage in the Fiber transition.
Sorry for digging up this thread but since there is not a general “referral” thread I didn’t want to open a new one.
Planning on switching to iWay, would anybody like to share their referral code with me so we both get some money off?
Thanks in advance!
1 Like
very happy with Iway! sent you a PM with the code. Thanks.
1 Like
Hi Jay, i see this is a quite old post, but it is the first one i could find on the web someone FINALLY explaining why i am having problem setting up my Synology DDNS at home for my NAS, once i moved to Yallo from another ISP
As i see you are an expert, is there any chance i can pay your time to connect over Zoom and ask your support if anything is possible?
Many thanks!
Not answering the actual question, but why not use tailscale instead?
afaik it solves ~all those kind of connectivity issue and it’s much easier to use (can just share each machine separately, and no fiddling with dns or anything).
3 Likes
Thank you nabalzbhf, let me explain and please forgive my poor english
I moved to Yallo to get 100 mbps upload speed at the same price of my former 10 mbps one, and the main purpose was to finally enjoy my Synology NAS, as in the past it was taking way too long to open a video or a photo remotely
Then I found out that Yallo use CGNAT and does not support IPv4 and port forwarding, so now i have two separate issues
- for a personal use, i can relay on quickconnect which still works, or use Tailgate (which i installed by the way) however with Quickconnect the speed is not so much better than in the past, and i believe with Tailgate it is going to be even slower (but i haven’t tried to be honest)
- I gave access to DS Videostation on my Snology to a few friends and relatives, and i need for them to be easy to connect to my NAS. I still have DSM 7.2.1 installed because with 7.2.2 Synology killed Videostation, so before upgrading i installed Jellyfin server on my NAS but i found out it is not reachable outside my LAN network because my Synology DDNS does not work (i mean, the DDNS status appears normal in the NAS settings, however if i type the DDNS URL in the browser i get ‘connection refused’ and i have all firewall off, so i understand it is due to CGNAT). So if i don’t figure out how to have Jellyfin running on my NAS and being reachable outside my LAN network, i am stuck with DSM 7.2.1 which is not optimal from a security standpoint. Is there any workaround or other solution you can think of?
Thank you so much for the patience of reading my messy situation!!
Paolo
Isn’t quickconnect going through a relay? Tailscale should be a direct connection normally once the NAT is punched through.
For sharing, you can share with tailscale as well (it’s kinda magical as it allows to securely make devices available as if you and your friends were on the same network to begin with).
In general you won’t be able to give people access without something like that I think (port forwarding won’t work through cgnat). Your best bet if not using something like tailscale or maybe IPv6 but that’s a different adventure)
I enabled IPv6 on my Synology NAS and i re-entered all my port forwarding rules in my Yallo router using IPv6 addresses, however the DDNS synology service is still unable to find my NAS outside my local network, only Quickconnect works, which yes is going through a relay
So i installed Tailscale app on my phone and you’re right, it is pretty straightforward, however if i really want all my friends and relatives to use it in order to connect to my jellyfin server, i still see two isseus
- i registered to Tailscale using my Gmail account but i could not find a registration process going through plain email address, so if i want my friends to connect to my Tailscale network, how can i give them access without sharing my Gmail account credentials? My original idea was to create a new email address just for this purpose and share it with my friends and assign a different password to log in to Tailscale, but it seems i cannot do it, i need to have an existing account either on Gmail or Microsoft, Apple, Github, which would force me to share the credentials with whoever i want to access my jellyfin server
- what risks or consequences would i face by adding other people to my private Tailscale network? would they be able to see my Mac as if they are in the same network? isn’t it a big risk? i just want them to access my jellyfin server, that’s it
Many thanks!!
Paolo
You want to add their account to be able to access your device, no need for a shared gmail account.
if you share on a per user basis, they only have access to what you decide to share: Share your machines with other users · Tailscale Docs
1 Like
By coincidence, I setup Wireguard today to connect my laptop to my home network securely when I’m out and about. It’s great to be able to access the home network transparently!
1 Like
Got it!! i didn’t know Tailscale mechanism, i can just share a single machine with other users simply inviting them via email, it’s smart!! Only cons is that the free plan is limited to 3 users, so i still need to figure out how to share an account if i need more users to connect
Thank you!!
1 Like
Just read on a tech web page that if my ISP (Yallo) uses carrier grade NAT (which is the case), then I will NOT be able to use Wireguard, whereas Tailscale can still work
Thanks!!
Fwiw & afaik that’s a “3 user limit to have in your network”, not a “3 user limit to share a machine”, so unless you tried to share a machine >3 times and that didn’t work - I don’t think this is an issue nor there are any limits.