To implement IPTV, China Telecom has bundled IPTV with half-selling half-delivery packages. Therefore, the bandwidth is 4 MB, and a wireless route is added. This route is a bit better, that is, you don't need an ADSL moden to add your own vro, and IPTV is equivalent to sending.
The problem is that there is no port shot in this route ?!! The download speed is a problem!
Is it true?
In the past, the account you provided in the telecom manual was just a common user and you could not see the advanced settings.
Check whether there is a ready-made Administrator account on the Internet. Sure enough, the Administrator has a general account with the username telecomadmin and password ne7ja % 5 m. After trying it, you will find that you cannot log on. It seems that China Telecom has already customized the route to you.
Continue searching for methods. One method is the web address method, that is, the web address is used to directly bypass the login, which is useful this time. Common users are logged on, but some advanced settings can be displayed in the web address.
These are useful: (the default router address is 192.168.1.1)
Wan settings: http: // 192.168.1.1/wancfg. cmd
Telecom Remote Control: http: // 192.168.1.1/tr69cfg.html (such a disgusting thing)
Router configuration backup: http: // 192.168.1.1/backupsettings.html
Access Service Switch: http: // 192.168.1.1/scsrvcntr. CMD? Action = view (Enable telnet login if not enabled)
UPnP settings: http: // 192.168.1.1/upnp.html
DMZ settings: http: // 192.168.1.1/scdmz.html
Nat virtual service: http: // 192.168.1.1/scvrtsrv. CMD? Action = view (it depends on the shadow port)
Upload the vro settings: http: // 192.168.1.1/updatesettings.html (this is ineffective)
Wireless Configuration: http: // 192.168.1.1/wlcfg.html
Another configuration interface: http: // 192.168.1.1/bcmtw.html (this also requires the Administrator)
With these, you can do a lot of things, but it is not easy. From the vro backup file, the admin password of telnet is still the common one, that is, Telnet can be logged on. The password is ne7ja % 5 m and is displayed as bku3akelnw0 = in the configuration file. At the same time, I also saw that the password of the common user was encrypted. The next step is to change the configuration file and then upload it back. Replace the Administrator's password with a known common user password. It's okay to encrypt it in plaintext. The same result is the same as the code.
The above does not mean that Telnet can be used for login. OK, use Telnet 192.189.1.1 in the DOS window.
Here is a preparation, that is, creating a TFTP service is a simple FTP. Download a tftpd32, green, and run it. The access directory is the TFTP program directory.
Run the following command on the Telnet interface: TFTP-p-F cfg. XML-TC.
192.168.1.x export route backup to form a cfg. xml file stored in the TFTP directory. Here, er, X is the IP address of the computer where you set up TFTP.
Use the UltraEdit-32 to edit the cfg. xml file
Value = "xxxxxxxxxxxxx"/> replace X with <usrpassword
Value = "xxxxxxxxxxxxx"/>, and save the X part.
Run the following command on the Telnet interface: TFTP-g-F cfg. XML-TC.
192.168.1.x upload route backup. Here I tried not to succeed in Vista, but in XP.
Therefore, you can log on to the advanced account with the username telecomadmin. You know the password.
Supplement:
1. My device is China Telecom homeaccess
Ha910, but this method is definitely not limited to this device. There are also traces of the Broadcom brand in cats.
2. An address string in the configuration file is used by China Telecom to remotely modify and control your cat. It can be changed. However, the Administrator account should be out of control after it is changed.
