Use your router instead of the ISP router ONT.
Use your router instead of the ISP router ONT.
Is your ISP router ONT replaced by your own router? Can I swap the ISP's router for a Mikrotik CCR 1009? Is it allowed in Beijing to connect directly via FO cables from the ISP?
Uncertain about the rules there, but as long as you understand the settings and set up the new router, you should be fine. I think it’s likely a router paired with a modem. If it’s just a router that links to a modem for Wi-Fi and similar services, it shouldn’t cause problems. Still, I don’t know the legal side of things.
Consider reaching out to your ISP for assistance. They might be handling unusual authentication processes that complicate things. You'll likely need help converting the data to Ethernet. They have some GPO settings, but you'll need to confirm the specific standard your ISP uses.
Yes, link directly to the ISP FO cable instead of the modem. A few years back a teammate faced consequences for identical actions—exploiting a security flaw—and he avoided prison but lost the ability to work in IT roles for five years along with other penalties.
I’m going to decline. Even in the US where citizens can purchase their own modems, fiber usually means you’re limited to what’s provided. You might be lucky enough for the ISP to assist with your own gear, but most times they won’t allow it. In China, things are different—there might be hidden access points through the ONT router that the ISP gives you, so they could disapprove of using your own equipment.
I wouldn't visit Best Buy to purchase an ONT, as it's likely unsupported. I've noticed numerous attempts on DSLreports.com where people struggle to get their gear working with Fiber ISPs. Most basic technical help is too clueless to understand what's happening, and you're usually lucky to reach someone at the next level or above. Given China's strict internet controls, it's possible they have hidden access points within their own equipment. Of course, the NSA could also have similar capabilities—they've been linked to ISP data centers. Right now, China is a major privacy issue, so I wouldn't be surprised if they gain access to anyone's network.
I was just highlighting that unless you, the person using it, can examine all the source code both as installed software and as micro-code on the device chips, you can't truly say it's completely secure. Therefore, when discussing backdoors, we should assume that anything closed-source might have one. To be clear, even though I don’t want to knowingly purchase items with hidden backdoors, I’ve accepted that some things are beyond my control since I don’t own a manufacturing plant or software development company to build products from scratch. But if I did, I’d be confident those products wouldn’t be doing anything suspicious without my awareness.