Righto, the 3rd day of hacking came to an end, which means the 3rd thread of progress trace is incoming. Brace yourselves! Yesterday I stopped at getting the femto to boot up and attempt to connect to a MNO's IPsec router.
For this to work, we need a IPsec router going. I took strongSwan 4.4.0 as it matched the version running on the femto itself and tried to hack it into submission.

So yesterday, I stopped at restoring console access to the Alcatel-Lucent 9361 Home Cell V2, at least to the U-Boot IPL part of it.
Tonight I'll work on getting the thing to boot Linux and enabling root access or equivalent. As these devices get deployed in environments and in amounts where technician visits are totally impractical, they have to be rock solid. This is why they decided to implement a kind of A/B update system to allow for rolling back in case of a boo-boo.

Alright choombas, time to pop us some femtocells.
The thread will go about gaining some sort of a foothold on a "9361 Home Cell V2" made by Alcatel-Lucent. An old toy supporting 3G. Examples: Clearly says what it is on the back.
Any other hardware revision will be different; I have V1 and V4 currently, didn't see V3 in the wild yet.

Alright, you wanted me to do it, so here goes.
A real quick and dirty tutorial on how to use #Universal #Radio #Hacker or #URH to do something useful. You can find the tool here: github.com/jopohl/urh
It's a bit flaky at times, but it appears to support capture and replay on most hardware out in the field today, which is GREAT