UTM WAN connection to broadband PPPOe help

If this isn't just specifying username and password in a PPPoE Interface definition, Kieran, please share Sophos Support's response to this question.

Cheers - Bob

Sophos response was basically "We don't support this". But that would mean running

    MODEM > SKY ROUTER > SOPHOS > NETWORK >

And if PFsense and DDwrt and even my current router can do it, then I'm sure it is possible with the UTM.

From what I can gather, unless the Sophos unit can supply a hex string in roughly the correct format at handshake, the SKY servers won't assign me an IP.

The Hex string is basically just username@dslsky.co.uk and a password. - I don't think it even has to be a valid username.

This is a thread on option 61 from the XG sw-   https://community.sophos.com/products/xg-firewall/f/network-and-routing/82853/xg-software-appliance---modify-dhcp-option-61-dhcp_client_identifier-61-when-acting-as-a-client  - Would editing this work?

If the option is defined on the box already, how can I edit it to add my hex username and password?

console> system dhcp dhcp-options list
Option Name Option Data Type
=========================================================================================

[...]

DHCP_Client_Identifier(61)                                  String

I added this to the var/sec/chroot-dhcpc/dhclient.ifaces file:

send dhcp-client-identifier 3777890865644535346633326769999964736c7a78394b6f6e4498796d498765366d95;

But it did not connect up. 

How would the UTM know which interface to use for this request?

Can anyone suggest what might be wrong with this string?

I added this to the var/sec/chroot-dhcpc/dhclient.ifaces file:

send dhcp-client-identifier 3777890865644535346633326769999964736c7a78394b6f6e4498796d498765366d95;

But it did not connect up. 

How would the UTM know which interface to use for this request?

Can anyone suggest what might be wrong with this string?

Years ago, da_merlin, one of the original developers, gave a different prescription: https://community.sophos.com/products/unified-threat-management/astaroorg/f/asg-v8-300-beta-closed/71340/8-285-notabug-closed-external-interface-won-t-come-up-when-using-dhcp/276676#276676. Any luck with that?

Cheers - Bob
PS I just found that after doing a Google on site:community.sophos.com DHCP "client identifier"

Success! 

I was probably over thinking this one slightly because in the end it was simple. 

Firstly thanks to BAIFson for the links.

1, Change Wan interface to Ethernet not PPPoE

2, Add 
              send dhcp-client-identifier 345678902345678904567.....................;
to the  /var/chroot-dhcpc/etc/default.conf 

3, Reboot, you probably only need to turn off the interface and turn it back on again. But SKY broadband seems to have a 1-3 minute timeout on ip renew/ release if the device changes. I'm using an Openreach modem which might cause this.

4, That's it, your interface should connect and shell changes will survive a reboot.

5, Now need to find out if it will survive an update..... and why I'm getting a poor ping and low bandwidth (20/5) when it should be (40/20).

Just to close this topic off. If your setting up Sky broadband on the UTM you may well have SKY Q too (4k satellite TV system).

If so you will also need to do this.