All Activity

The problem occurs periodically. Usually it either connects to all or none. I can provide you with service numbers, but there are a lot of routers, do I need to list them all? The problem usually occurs from a mobile phone on the road, from home, from the office at a certain time.

I had 2 cases, when the KN-1111 router reset to factory settings, 90% of the time it was during power outages.

Hi! Could you please provide screenshots of the errors and service tag of the device (send me in DM)? if the issue is still relevant

Maintenance Notice Dear Keenetic RMM Users, Scheduled maintenance will take place on 10 March 2026 (8:45–9:45 AM UTC). Keenetic RMM may be unavailable for up to one hour during this time. You can continue managing your nodes via the web interface or mobile app. We apologize for any inconvenience.

After installing the Alpha 3 version, I started experiencing issues with firmware updates. On the Hopper, Sprinter, and Viva models, I am unable to install either the main (stable) or the dev versions.

I don't understand you completely, you mean that if often happens that the power goes down the router can itself reset to the factory settings? I guess I got you wrong, this is a no sense. Both router turn on regulary, the only proble is that I can't aquire the extender on the main one

And the power doesn't turn on? If this happens often, the router may be reset to factory settings.

ip nat Chilli0 is not required in usual scenario when traffic goes from LAN to WAN. In your setup UAM is placed on another LAN interface.

Thanks for your reply, I wish you good luck, but I don't thin this will help. I've updated the extender to 5.0.7 but didn't help, I'm afraid to remotely update the maim if it can cause again the reset of all settings, I'll create a big problem. This is really bad for a technology that the user is afraid this happens again, unacceptable

Yes. Today, similarly, 1 of the 2 extenders stopped being seen by the controller. I reset the extender settings. It didn't help. I'll reboot the main router in the evening.

Hi mates, thanks for reading and support. Honestly I'm shocked about this brand, in the middle of the day my friend's restaurant was disconnected from internet, when I came I've noticed the router lost its configuration, it kept only password to log in, WAN IP lost, as well as WiFi SSID, DHCP etc. I've set all back but it doesn't want now to acquire the extension, I've reset it to the factory setting, I press the button but after 2 seconds it goes back doing nothing. I'm really annoyed about that, I don't know the reasons of this problem, what can I do now? Should I reset to factory the main router too? Can be the router's settings got corrupted from the update? I've to go there again.. I guess this is beacause of this damned new 5.0.4 version, why it updated in the middle of the day, I'll for sure disable any future update in this router once this is fixed

Release 5.1 Alpha 4 Core: fixed the 'nand_do_write_ops: attempt to write non page aligned data' error preventing system update operation (reported by @Aleksey Mikhaylov) [NDM-4307]

Vorrei suggerire l'implementazione di una funzionalità software per migliorare la stabilità e la gestione del Wi-Fi a 5GHz, simile a quanto già presente in apparati professionali (come Ubiquiti per esempio). Attualmente, quando la selezione del canale 5GHz è impostata su "Auto", i router Keenetic scansionano l'intero spettro, includendo e preferendo da come vedo i canali DFS (52-144), soprattutto quelli superiori al 100. Sebbene questi canali offrano più larghezza di banda, a volte la frequenza viene disattivata troppe volte. Il router è costretto a interrompere le trasmissioni per 10 o 1 minuto (come da manuale) a seconda se è canale 100 e superiore o 52 e superiore, causando instabilità. Al momento, l'unica soluzione per l'utente è bloccare manualmente un canale specifico (36, 40, 44 o 48), perdendo però i vantaggi della selezione automatica in caso di interferenze. Soluzione proposta: Aggiungere un semplice interruttore (Toggle) nelle impostazioni Wi-Fi 5GHz: "Consenti l'uso dei canali DFS" (Sì/No). Se impostato su SÌ (default): Il router continua a funzionare come ora, scegliendo tra tutti i canali disponibili. Se impostato su NO: L'algoritmo di selezione automatica viene limitato esclusivamente ai canali non-DFS (dal 36 al 48).

The problem occurs when upgrading the device in the mesh system. The main device receives the update, but update checks cannot be performed for the devices in the mesh. Additionally, the devices in the mesh cannot be reached Keendns.

-Google Translate: Hello, I recently received help from AI while troubleshooting some issues with my router, and it was very helpful. I had an idea about how to integrate this into the system, and I'd like to share this model with you. Adding such a feature would be beneficial. The visual is roughly prepared to help understand the logic. It could be a similar model.

funny. nobody answers here

Release 5.1 Alpha 3 DynDNS: fixed the 'URL must be filled for custom type' error preventing operation with custom servers (reported by @snark) [NDM-4292] Web: implemented turning off the modem power cycle for custom Internet availability checker modes [NWI-4629] Web: improved the port forwarding rule management buttons for the mobile view of the registered client settings (reported by @dimon27254) [NWI-4672] Web: corrected the sorting of clients by IP address in the client lists (reported by @dimon27254) [NWI-4677] Wireguard: added support for advanced ASC parameters via configuration file import or by using CLI (requested by @FLK) [NDM-4298] interface {name} wireguard asc {jc} {jmin} {jmax} {s1} {s2} {h1} {h2} {h3} {h4} [{s3} {s4} {i1} {i2} {i3} {i4} {i5}]   Known issues: System update operation on devices with NAND memory is partially blocked. Please visit Download Center for your model and use the Recovery Utility to restore, or upload an image from our KeeneticOS archive via tftp.

It's incredibly inconvenient that you have to log in again about 10 minutes after logging in. After a short period of working with the router, the browser requires you to re-enter your login password.

Release 5.0.7 (previewstable): DynDNS: added the DuckDNS preset [NDM-4273] Hotspot: implemented commands to turn off the SSDP and WS-Discovery network host discovery methods [NDM-4283] interface {name} ssdp disable interface {name} wsd disable HTTP: enhanced the process for renewing the SSL certificate for the system domain name [NDM-4284] LTE: implemented a timeout mechanism to switch back to the primary SIM on the dual-SIM modem [NDM-4129] interface {name} suspend timeout {seconds} interface {name} suspend schedule {schedule} MWS: fixed the issue with the connection display for wired client devices [NDM-4282] Web: implemented turning off the modem power cycle for custom Internet availability checker modes [NWI-4629] Web: added support for IPv6 URIs when configuring DNS-over-TLS (DoT) and DNS-over-HTTPS (DoH) secure DNS servers [NWI-4610] Web: improved toggle state indication [NWI-4661] Web: fixed the shortening of client names (reported by @dimon27254) [NWI-4668] Web: fixed the sorting mode icon display in content filter settings (reported by @dimon27254) [NWI-4671] Web: fixed the actuation of toggles for the mobile view (reported by @spatiumstas) [NWI-4632] Web: fixed the tooltip display in proxy connections list (reported by @spatiumstas) [NWI-4670] Web: improved the line wrapping for the mobile view of the system log (reported by @spatiumstas) [NWI-4680] Wi-Fi: resolved the issue of the channel width decreasing below 80 MHz when the Adjustment ZeroWait DFS is active [SYS-1544] Wi-Fi: eliminated security vulnerabilities [SYS-1542] CVE-2014-3570 CVE-2022-4304

I added "ip nat Chilli0" to my config on Keenetic router. Then the issue is resolved. I don't understand. Why is this needed ? Shouldn't it be enabled by default ? Also , if I don't add Firewall rule "tcp allow any" to the Guest interface, the user can not get to the UAM server login page. Why ?

Hello, I'm trying to implement a captive portal on a Keenetic router in the guest network. My UAM and RADIUS servers are ready. I've entered the necessary parameters into the captive portal's "my profile" section as follows: UAM_Server: http://192.168.1.40:3990/login UAM_Secret: secret_2024 Radius Server: 192.168.1.40 Radius Secret: radius_secret RADIUS NAS ID: keenetic I'm trying to access it from an Android phone. When I connect to the Guest page, I'm redirected to the login page. There, I only authenticate by clicking the "accept" button. And I see "success" in the logs. 10.1.30.6 - - [21/Feb/2026 23:59:47] "GET /login?res=notyet&uamip=10.1.30.1&uamport=3990&challenge=e2fa752793a8de730eb4daebd27f5992&called=52-FF-20-F8-5D-78&mac=B2-D0-DC-7D-9C-B4&ip=10.1.30.6&nasid=keenetic&sessionid=177171836000000005&userurl=http://play.googleapis.com/generate_204&md=23DA19D9D824E0D449FBFA23DD88F63F HTTP/1.1" 200 - 10.1.30.6 - - [21/Feb/2026 23:59:47] "GET /favicon.ico HTTP/1.1" 404 - 10.1.30.6 - - [21/Feb/2026 23:59:48] "POST /accept HTTP/1.1" 302 - 10.1.30.6 - - [21/Feb/2026 23:59:48] "GET /login?res=success&uamip=10.1.30.1&uamport=3990&called=52-FF-20-F8-5D-78&uid=B2-D0-DC-7D-9C-B4&timeleft=300&mac=B2-D0-DC-7D-9C-B4&ip=10.1.30.6&reply=Welcome&nasid=keenetic&sessionid=177171836000000005&userurl=http://play.googleapis.com/generate_204&md=E50C1463B84B2838B5FF3801A094F6C3 HTTP/1.1" 200 - Then, when I check the router's CLI, I see that the client is connected and packets are being passed through: (config)> show interface Chilli0 chilli host: session-id: 177174301100000003 user: CC-F8-26-D5-00-96 ip: 10.1.30.20 mac: cc:f8:26:d5:00:96 start-time: 178 end-time: 300 idle-time: 0 idle-time-limit: 0 tx-bytes: 37575 tx-bytes-limit: 0 rx-bytes: 19874 rx-bytes-limit: 0 tx-speed: 0 tx-speed-limit: 0 rx-speed: 0 rx-speed-limit: 0 It's receiving the IP address 10.1.30.20. However, the Android client still doesn't see itself as connected and can't access web pages. The "Sign in to the network" warning persists. When I ping 10.1.30.20 from the router: PING 10.1.30.20 (10.1.30.20): 56 data bytes 64 bytes from 10.1.30.20: seq=0 ttl=64 time=79.626 ms 64 bytes from 10.1.30.20: seq=0 ttl=64 time=79.683 ms (DUP!) 64 bytes from 10.1.30.20: seq=1 ttl=64 time=29.208 ms 64 bytes from 10.1.30.20: seq=1 ttl=64 time=29.251 ms (DUP!) 64 bytes from 10.1.30.20: seq=2 ttl=64 time=51.577 ms 64 bytes from 10.1.30.20: seq=2 ttl=64 time=51.641 ms (DUP!) If I close the captive portal and access the site normally as a guest, I get the same IP address (10.1.30.20) and the ping result is correct: PING 10.1.30.20 (10.1.30.20): 56 data bytes 64 bytes from 10.1.30.20: seq=6 ttl=64 time=1135.330 ms 64 bytes from 10.1.30.20: seq=7 ttl=64 time=135.173 ms 64 bytes from 10.1.30.20: seq=8 ttl=64 time=10.261 ms 64 bytes from 10.1.30.20: seq=9 ttl=64 time=5.695 ms 64 bytes from 10.1.30.20: seq=10 ttl=64 time=3.116 ms When I look at the interfaces for the captive portal and the normal guest via the router, I see a difference: When there is no captive portal, the interface name appears as Guest and "link: up". When there is a captive portal, the interface name appears as Chilli0 and "link: down". (config)> show interface Chilli0 id: Chilli0 index: 0 interface-name: Chilli0 type: Chilli description: Guest network traits: Ip traits: Chilli link: down connected: yes state: up mtu: 1500 tx-queue-length: 1000 admin-only: no address: 10.1.30.1 mask: 255.255.255.0 uptime: 35 global: no security-level: protected bridge: interface, link = yes: GigabitEthernet0/Vlan3 interface, link = yes: WifiMaster0/AccessPoint1 interface, link = yes: WifiMaster1/AccessPoint1 uam-auth: 192.168.1.40:3990 max-auth: 1 summary: layer: conf: running ipv4: running ctrl: running (config)> show interface Guest id: Bridge1 index: 1 interface-name: Guest type: Bridge description: Guest network traits: Mac traits: Ethernet traits: Ip traits: Ip6 traits: Supplicant traits: EthernetIp traits: Bridge link: up connected: yes state: up mtu: 1500 tx-queue-length: 0 admin-only: no address: 10.1.30.1 mask: 255.255.255.0 uptime: 421 global: no security-level: protected ipv6: addresses: address: fe80::50ff:20ff:fef8:5d78 prefix-length: 64 proto: KERNEL valid-lifetime: infinite mac: 52:ff:20:f8:5d:78 auth-type: none bridge: interface, link = yes: GigabitEthernet0/Vlan3 interface, link = yes: WifiMaster0/AccessPoint1 interface, link = yes: WifiMaster1/AccessPoint1 summary: layer: conf: running link: running ipv4: disabled ipv6: disabled ctrl: running (config)> Because of this difference, the client connecting through the captive portal cannot access the site. Where is the problem? How can I fix it?

I am experiencing a persistent issue with PlayStation 5 connecting to my Keenetic Titan. While the console passes the built-in "Internet Connection Test", it consistently fails to connect to online services in games (Gran Turismo 7 and F1 25). Wi-Fi Handshake Mismatch: In the Keenetic Device List, the PS5 consistently connects at 11ac 2x2 40MHz or 11ax 2x2 40MHz, even when forced to 5GHz-only and with the router set to manual channels (36, 44, 149) and 80MHz width. The "Extender" Proof: When I connect the PS5 to a TP-Link Wi-Fi extender located in the same spot, the connection immediately stabilizes at 11ac 80MHz, and all games connect to online services perfectly. This suggests the Titan's environmental or "smart" logic is forcing a 40MHz downshift that breaks the game handshakes. Configuration Tested: I have already tried disabling IPv6, setting Static IPs, disabling "Internet Safety" (DNS filters), and manually setting MTU to 1450/1473.

Release 5.1 Alpha 2 Hotspot: implemented commands to turn off the SSDP and WS-Discovery network host discovery methods [NDM-4283] interface {name} ssdp disable interface {name} wsd disable HTTP: enhanced the process for renewing the SSL certificate for the system domain name [NDM-4284] LTE: implemented a timeout mechanism to switch back to the primary SIM on the dual-SIM modem [NDM-4129] interface {name} suspend timeout {seconds} interface {name} suspend schedule {schedule} MWS: fixed the issue with the connection display for wired client devices [NDM-4282] Storage: improved operation with USB drives that report abnormal 'discard' capabilities [NDM-4291] Web: implemented turning off the modem power cycle for custom Internet availability checker modes [NWI-4629] Web: fixed the sorting mode icon display in content filter settings (reported by @dimon27254) [NWI-4671] Web: fixed the tooltip display in proxy connections list (reported by @spatiumstas) [NWI-4670] Web: improved the line wrapping for the mobile view of the system log (reported by @spatiumstas) [NWI-4680] Wi-Fi: resolved an issue where the ZeroWait DFS adjustment prevents the use of selected Wi-Fi channel width [SYS-1544] Wi-Fi: eliminated security vulnerabilities [SYS-1542] CVE-2014-3570 CVE-2022-4304

after updating 5.0.6 to 5.1 alpha 1 media server doesn't work - it shown in interface as ON, and configured - doesn't show up on network player - doesn't show up in logs (there's no `Dlna::Server: service started.` message) - reinstalling component doesn't help - downgrading to 5.0.6 helps context: router has "recommended" components installed + dlna, transmission, ftp, smb, DoH, DoT, ext4 (no opkg)

The main thing is that everyone is silent, no one who is knowledgeable will write an explanation. It seems that the developers only read the Russian forum.