All Activity

Most likely the main kinetic is resetting the network. The Internet should appear after connecting.

04/05/2026 New Added event grouping in Telegram messages: if more than 10 events occur within one minute, they are combined into a single message Added display of additional connection parameters on the Sites Detail page Updated the design of buttons and filters Updated the design of elements on the Sites and Nodes pages Added a "Blocked" status for linked Telegram accounts if the supergroup thread has been closed to new posts by the administrator Fixed Fixed behaviour when copying an invitation link to a team Fixed the model count counter in the chart on the Dashboard page Fixed the display of client names on the traffic distribution chart Fixed the display of rows in the Nodes and Sites tables when running OS Update and Reboot operations Fixed the display of pinned rows and columns in tables Fixed the display of the icon for an inactive mobile connection

Hi everyone, I need help connecting two switches. I have a Challenger SE router and two KN-4710 switches that I want to connect. When I connect the first switch to the router, everything works fine—the internet is up and running—but as soon as I connect the second switch to the first one, the internet stops working. Can you tell me what might be causing this? There’s definitely no looping.

The only way it's enable GUI on HTTP port and add Firewall rules to permit only desired IP an block all others IPs. HTTPS work only whit FQDN and Certificate. Not whit IP.

Then try to grant access from external IPs to the desired one on the interface in the firewall

The Keen DNS, it's ok, but not for my installations. I need access via IP, on all Public IP of all Interfaces.

Register the YourName.keendns.pro in the Keen DNS. Connect to the web interface using the specified name (YourName.keendns.pro). The main thing is to set a strong password.

Update Via CLI interface Dummy0 (to create Dummy0 interface and after add IP address x.x.x.x) ip static Home x.x.x.x (to NAT Home Segment using Source x.x.x.x)

Hi Leshiyart, tnx. Can you share more details on this solution? "DDNS + ip http ssl acme get "DDNS name" I m new on Keenetic OS.

https work with ssl certificate, use keendns name or use DDNS + ip http ssl acme get "DDNS name"

Hello, I would like to report a limitation (or possibly request a feature) regarding firmware update channels in the Wi-Fi System (Mesh). On the main Keenetic router, it is possible to switch between different update channels (e.g., Main, Preview, Dev), and also downgrade to an LTS version if needed. However, for extender/mesh devices connected within the Wi-Fi System, there is no option to control or change the update channel. As far as I can see, these devices do not provide access to LTS versions or any channel selection at all. This creates an inconsistency, especially for users who prefer running stable/LTS firmware across all devices in the mesh network. Is there currently a way to: Set the update channel (especially LTS) for mesh/extender devices? Or make extender devices follow the main router’s selected channel? If not, I would like to suggest adding this feature for better consistency and control in mesh environments.

Add configurable loopback interfaces and use in outbound NAT. Example: lo01 >>> IP address xxx.xxx.xxx.xxx Outbound NAT source lo01 IP = xxx.xxx.xxx.xxx

Access from Internet su GUI using Public IP Address, like https://185.xxx.xxx.224 where IP 185.xxx.xxx.224 is an IP of Router (any interface) .

So where are you at with the DNS-Based Routes for custom policies? I see no mentions in the latest release notes.

I would add a trash cleanup (for inactive but registered devices), for example, every 6/12/24 hours (or add the ability to manually specify this interval). Alternatively, you could also tie this interval to DHCP, for example, deleting registered devices if their address lease has expired, they are offline, and they don't have a static address.

+1

Hi! Please add the ability to combine multiple Wi-Fi networks into a single bridge or a single VLAN via the web interface. For example, I have three Wi-Fi networks and I need them all to receive addresses from a single, large range, but I can't do this because the web interface doesn't allow me to disable (remove) the automatically assigned VLAN ID. To do this, I need to access SSH/Telnet and manually enter commands to combine my access points into a single bridge. But that's not all. Whenever I try to change the primary Wi-Fi settings (I have a home Wi-Fi connection), the router freezes and all connections to the router are lost. Essentially, the router has destroyed the bridge itself, and the only way to restore functionality is by resetting the router to factory settings using the physical reset button and loading a previously saved backup.

Release 5.0.11 (stable): Mobile: improved mobile modem operation to resolve an issue affecting certain SIM cards [NDM-4424] interface {name} esim disable MWS: resolved the issue where wireless-only segments were missing from extenders under certain conditions [NDM-4420] SSH: fixed an issue that could prevent the session timeout from being applied correctly [NDM-4406] Web: adjusted the height of the list on the Application Traffic Analyser page (reported by @dimon27254) [NWI-4819] Web: fixed the display of the current time in the schedule editor [NWI-4815] Web: resolved the scrolling issue for the mobile view of the Application Traffic Analyser page [NWI-4816] Web: fixed the Download Station application operation [NWI-4826] Web: removed the unnecessary 'Delete' button from the WireGuard VPN Server connection statistics window in mobile view [NWI-4809] Wi-Fi: fixed the 2.4 GHz channel width display on models using MT7628 or MT7603 [SYS-1755] Wi-Fi: updated the MediaTek Wi-Fi 7 SoC firmware and wireless driver to improve stability, compatibility, and performance in various Wi-Fi operation scenarios [SYS-1772] WireGuard: fixed the issue with multiple connections operation after a device restart (reported by @tkost, @Robespierre) [NDM-4418]

-Google Translate: Hello, I am currently using IPv6 and experiencing issues related to MTU and MSS. While it is currently possible to edit these values for IPv4, this functionality is missing for IPv6. Could you please add the ability to configure MTU/MSS for IPv6 within the Interface and WireGuard profiles? Additionally, it would be very helpful to have a GUI or CLI tool to statistically track and detect MTU-related TCP drop issues. Specifically, I would like to see how many drops occur on a particular client or interface. Finally, if possible, could a feature be added to provide a GUI warning to clients experiencing these issues, with an option to automatically disable their IPv6 access to prevent further connectivity problems?

Download and recovery fw install and latest version update and fix. https://files.docs.keenetic.net/Download/KN-1011/KN-1011-Recovery-En.zip https://support.keenetic.com/hero/kn-1011/en/28382-download-center.html

known 5.1 A3 issue, Keenetic support knows how to fix it

Configuration: KN-1011 5.1 Alpha 3 For some time i'am unable to flash update, issue popped out couple of months ago. I tried different channels and workaround, no effect. Via web i see error after 50% complete `The server is temporarily unavailable (code 0). Please try again later.` with replacing firmware by .bin file Failed to switch system boot partition via telnet following error `Core::System::Update::Hooks error[8586241]: failed to update the firmware: unable to commit an update.` Self test log in attachment. What may be wrong, how to fix this? self-test.txt

yes, its possible with CLI interface GigabitEthernet1/VlanX up ip address xxxxx (or dhcp) ip global auto exit interface GigabitEthernet1/VlanY up ip address xxxxx ip global auto exit system configuration save example for wan port for some model, if wan port in switch other command

Release 5.1 Beta 1 (preview) Web: enabled the option to choose the connection when configuring custom IPv6 DNS servers [NWI-4799] Web: enhanced the Assignment column to better fit larger client device lists in the Application Filter menu (requested by @FLK) [NWI-4781] Web: fixed the navigation to the File Browser from the System Dashboard page in a specific case (reported by @iggo) [NWI-4796] Web: updated the IPv6 section on the Firewall page to allow selection of the OPKG tunnel interfaces (reported by @avn) [NWI-4776] Wi-Fi: fixed the 2.4 GHz channel width display on models using MT7628 or MT7603 [SYS-1755]

And after some interactions with Chat GPT and providing it output of different commands from CLI, it says: Facts from your live output: * PPPoE0 has IPv6 enabled and has a global IPv6 address. * show ipv6 prefixes previously showed a delegated /56 on PPPoE0. * show ipv6 subnets previously showed a /64 from that /56 applied to Home. * show interface PPPoE0 still says ipv6 defaultgw: no. * show ipv6 route still has no ::/0 default IPv6 route via PPPoE0. * ping6 works from UsbLte0, but fails from PPPoE0 with network unreachable. The manual’s ping6 syntax uses source, which you used correctly here. So the exact diagnosis is: * Prefix delegation on PPPoE works, but IPv6 default routing on PPPoE does not.