All Activity

Hello @spetr You can create a dedicated connection policy where the VPN interface is the primary one and then assign it to the Transmission client using the torrent policy command: Don't forget to save the device configuration (system configuration save) after you configure the Transmission policy.

Hey, is it possible to specify which interface (VPN) should be used DS for upload/download?

-Translate: Hello, because I use a static IP address, I'm constantly being harassed by spam check packets from IP blocks. Is there a way to add a firewall feature that allows us to create rules to block IP blocks temporarily for a day or more when more than 1k IP blocks are NATed simultaneously?

-Translate: Hello, I'm currently connected to the router via Wireguard VPN from another computer, but I can't connect to other devices on the router's mesh network via acme default. The latest update notes list a fix, but the problem persists.

Buongiorno, per una problematica del genere conviene scrivere al supporto, che sarà in grado di aiutarti. Puoi aprirlo dal sito web o mandando una mail a supporto@keenetic.it. Consiglio di allegare anche un self-test e spiegare bene la situazione, magari con qualche screenshot.

Release 5.0.0 (preview): DNS: fixed "IPset kernel error" when adding FQDN object group exclusions (reported by @dimon27254) [NDM-4101] DNS: fixed parsing "auto" argument when reading configuration (reported by @keenet07) [NDM-4096] DNS: fixed sending responses with "easyconfig" address to VPN clients (reported by @snark) [NDM-4095] DNS: сhanged NXDOMAIN response to NOERROR when requesting AAAA for A-only records [NDM-3857] DSL: fixed PPE crash when connected via ADSL [SYS-1464] HTTP: disabled public access to the device with a weak administrator password [NDM-4097] LTE: implemented cell binding for the FM350-GL modem [NDM-3201] LTE: improved FM350gl-16 modem compatibility with Yota [NDM-3997] Monitor: changed the packet dump extension from .pcapng to .pcap [NDM-4091] OpenSSL: updated to 3.0.18 [NDM-4083] PPP: implemented routing loop prevention when receiving erroneous IPCP remote peer [NDM-4093] UsbLte: implemented eSIM and dualSIM support for the FM350-GL modem [NDM-4100] Web: added button labels in the Internet tile (reported by @dimon27254) [NWI-4461] Web: added interface selection for Wireguard (reported by @T@rkus) [NWI-3819] Web: fix tooltip display on the Wi-Fi Monitor page (reported by @dimon27254) [NWI-4449] Web: fixed filter display in the Internet tile when the component is missing (reported by @FLK) [NWI-4462] Web: fixed functioning of toggle switches in Other Connections (reported by @FLK) [NWI-4452] Web: fixed QR code for hidden SSIDs (reported by @cheburashkaDDNS) [NWI-4468] Web: fixed the graph's upper border in the Internet tile (reported by @Denis P) [NWI-4460] Web: fixed Wi-Fi band display on wide screens [NWI-4472] Wi-Fi: fixed WifiGuestApToggle to turn on guest APs [NDM-4054]

Ho la fibra in FTTC

Buongiorno, ho acquistato un router Keenetic ac 1200 wifi 5. Dopo l'installazione mi dice rete non connessa. Cosa posso fare?

29/10/2025 Keenetic RMM New Added handling for updating a group to a supergroup in Telegram Added display of new types of tunnel connections Removed the ability to add a site by domain name Added validation of weak passwords when adding a site Added a new display of group operations on the mobile version Fixed Fixed display and sorting of filter parameters in tables Fixed the incorrect behaviour of the context menu Fixed duplication of notifications in Telegram about the site going to "Confirmation of rights required" status Fixed redirection when cancelling the "Leave team" operation

Nothing strange. I encountered the same problem on my Viva (KN-1913). I installed the ssh component, but I couldn't connect via SSH to my Keenetic Viva. I rebooted it several times, but that didn't help. I scanned its ports, and port 22 was closed. I connected to it via telnet and checked the running services using the show processes command. I saw the following: object: id: SSH server state: STOPPED service: configured: yes alive: yes started: yes state: STOPPED Well, service ssh system configuration save solved the problem, the SSH service started.

Yes, once you reset the Titan to the factory settings, the Initial Setup Wizard should start automatically (once you connect your computer back to the Titan).

Silly question By resetting the Titan KN-1812 to factory settings, can the configuration wizard be activated? Thanks

Hello. I also configured it this way and there is a problem with additional subnets in IP-sec. Just like the problem with wireguard endpoints, when there are 2 providers on the main router, and when switching them, the tunnel remains on the secondary provider. Just like the additional WiSP does not always connect to the mobile access point on the phone, if the access point is turned on after some time. I think that developers pay more attention to drawing the interface than to fixing bugs.

Hi everybody. I'm trying to setup Site-to-Site Ipsec vpn between Keenetic Hopper SE (KN-3812) and Juniper SRX device. Same location working well Draytek Vigor dual wan. Now it changes to Keenetic. Setup has done and tunnel is online. The problem is routing from Keenetic side (branch) to SRX (center point). There are extra network to be routed, but something is going not well. What I've found. No matter what remote lan will be first or second or third. Routing performs only for one subnets fixed in association (center) Examples: When tunnel is offline route for 172.21.0.0/24 going to ISP. This issue is similar to this topic. So I'm not lonely. Firewall rules have nothing about vpn tunnels. How-tos not mentioned about several subnets vpn. Other types of vpn not suitable solution. Draytek performs very well for years same configuration with extra subnets. Maybe it could be solved by Static Route Parameters, but what gateway ip and interface must be used? I hope for a clue and thank you in advance.

Hi, Could you please group the client list by SSID? This will help us better analyze the device distribution and see how many clients are connected under each SSID. If possible, please include in the report the number of clients per SSID along with device details such as MAC address, IP address, and connection duration. Thank you in advance for your support. Its so complicated

Release 4.3.6.3: CIFS: fixed copying files using named streams (reported by @dimon27254) [SYS-1450] HTTP: disabled public access to the device with a weak administrator password [NDM-4097] LTE: improved FM350gl-16 modem compatibility with Yota [NDM-3997]

Hi George, I confirm that it is possible to use the new segments on the mesh nodes as well. Have you created and marked all VLANs on the ports of the D-Link switch and on the uplink of the KN-2710 connected to the switch? Regards

Hello, I'm using keenetic stuff in a mesh configuration. kn-2710 is controller, seven extenders kn-3510 as mesh nodes. All mesh nodes connected using poe cables through 24 ports d-link gds-1100. Everything is fine untill I add new segment so clients who is trying to connect to wifi network through new segment has no response from dhcp. In my oppinion, there is no way to connect to another segment using wifi through mesh node belonged to one segment and connected by wire network. Am i right? What's the way to have several segments and working wired mesh? I've tried segments isolation in all ways, vlan marking and mixing wires from several segments of kn-2710 through d-link switch with no result. Thank you George

Never mind. it waws wierd but even so Server was installed and rounter restarted - service didn't run. manual went to comand line and started the service service ssh system configuration save then it worked!

Please help to find the solution to my strange problem. I'm trying to connect to my 1812 Ultra they SSH. SSH Server installed, SFTP server installed, thry webinnterface I even set "security-level public" but still can't connect thru putty or Termius (connection refused error)

Create new connection policy on keenetic router. Enable "use for to access internet" option in wireguard settings. (Keenetic) Add that wireguard connection in policy you just created. After that you can add any device in that policy. Your device should use your vps wireguard connection.

Hi all Need some help from community to configure sharing internet from 4g modem using proxy server on keenetic. Device model: Giga (KN-1011), KeeneticOS version: 4.3.6.2 Three internet channels are connected to it (connection priorities, default policy, are in this order): 1) LAN-1 2) LAN-2 3) 4G modem Huawei E3372h-320 modem connected via USB KeenDNS is connected and configured External clients need to be able to connect to the router via a proxy and have access to internet via the 4G modem, while the connection priority for users within the network is in the order specified above. I installed and configured the 3proxy proxy server on my router. I can connect to the proxy from the outside via KeenDNS. user.keenetic.link:40097 I configured port forwarding from 40097 to 45697 45697 is the port the proxy is running on. The problem is that when connecting through this proxy, the external client receives an IP from the LAN-1 connection, but the "4G modem" connection should be used. The default connection policy should be left as is: LAN-1 is the primary connection, LAN-2, and the 4G modem are the backup connections. How can I properly configure routing so that external clients can access the internet via the 4G modem when connecting through the proxy? Thanks in advance for any tips and ideas.

Hello. I have ipv6 vpn service. But I can't reach internet after vpn connection. The vpn server use encapsulated method on server side. First it connect ipv4 server after that it create a ipv6 tunnel on ipv4 connection. But keenetic doesn't create ipv6 tunnel after succesfully connected ipv4 connection. In addition I can connect and succesfully get ipv6 ip adress with official android openvpn software. Thats why I am ask your help. I am sure vpn server have not any problem. Probably I can say that the problem source is KeeneticOs or openvpn package. Currently my KeeneticOs version is 4.3.6.1 Here you can get information encapsulated ipv6 feature of openvpn. https://openvpn.net/as-docs/ipv6-support.html#access-server-and-ipv6-support I searched google a lot. I tried many ways still I doesn't reach any solution. I can provide my ovpn file if you need to test or any other log file etc.

Release 5.0 Beta 3 (preview): CIFS: fixed copying files using named streams (reported by @dimon27254) [SYS-1450] DNS: added support for IP subnets in "object-group fqdn include" [NDM-4078] DNS: fixed forwarding of servfail.invalid requests to external servers [NDM-4069] DNS: fixed overload of "Dns::Route::ResolveQueue" [NDM-4086] DNS: reduced the resolving intensity of unused “object-group fqdn” names (reported by @dimon27254) [NDM-4082] IPsec: fixed transition of L2TP traffic when L2TP/IPsec server is running [NDM-4068] IPv4: fixed disabling of individual static routes (reported by @dimon27254) [NDM-4076] IPv6: enabled external access to backup WAN interfaces (reported by @qmxocynjca) [NDM-4067] VPN: implemented DNS server overriding for clients of built-in VPN servers [NDM-4032]: crypto map virtual-ip dns-servers {dns1} [dns2] crypto map l2tp-server dns-servers {dns1} [dns2] sstp-server dns-servers {dns1} [dns2] vpn-server dns-servers {dns1} [dns2] oc-server dns-servers {dns1} [dns2] Web: fixed blocking of Wi-Fi toggles in MWS extenders (reported by @dimon27254) [NWI-4450] Web: fixed display of application blocking status (reported by @FLK) [NDM-4051] Web: fixed display of drop-down lists on mobile screens (reported by @dimon27254) [NWI-4448] Web: fixed display of TunnelSixInFour interfaces when editing static rules (reported by @Denis P) [NWI-4456] Web: fixed display of WireGuard server statistics (reported by @Denis P) [NWI-4425] Web: fixed help sign jumping on mobile screens (reported by @dimon27254) [NWI-4447] Wi-Fi: fixed potential system crash when using OWE authentication [SYS-1461]

-Translate: Hello, I'd like to report an issue with the DNS-based route addition page. I configured my Warp Wireguard connection as shown in the image. Both initially worked without issue, but after turning the setting off and on, adding new domains, or deleting and re-adding them completely, the "domain" redirection in the route list became corrupted. Even deleting profile and re-adding them didn't work properly. The IP side appears to be working fine. Do you experience this issue as well? I'd appreciate it if you could try it and report back. 5.00.B.3.0-2 - 1811