Access to WAN PORT from anywhere without using KEENETIC DDNS... !!!!!!

[Wise Pds]

Hi, this is a big big fail...

I have my Keenetic router under a PFSENSE router with 3 wifi segments .... first point.. if i use AP mode, this mode don't have firewall... BAD!!! But if i choose to use Router mode under the real PFSENSE ROUTE... i cant access SMB from internet... even if i create a firewall rule... WTF? I only can access using FTP, SFTP, WEBDAV.. more or less...300% slower thant real SMB performance (About 350-390 MB/S with SSD).

This is a very bad deal!!!

I want to choose the behabiour of the router with the firewall rules!!!!  if I what  to login into my router by wan port from my lan, i must can do it... If i don't want to use Keenetic DDNS to acces from my WAN PORT (For example, local ip like 192.168.1.5) i must access without problems!

Please fix this... a lot of people use Keenetic Routers in router mode inside a lan with a principal router and the wan IP it's a simple 192.168.1.8....

Please, Please, FIX THIS!!!!
Synology for example don´t use a obliged DDNS to access wan... the firewall rules are the boss! Be like Synology in this area please!

Ah!! Another think! Let me use my own SSL certificate... an IMPORT TOOL to use our certificates please!!!

Best regards

Manuel.

[keen_parish27]

Hi Manuel,

Please share your infrastructure and configuration to help you access SMB from the Internet. However, I'd like to express my disappointment at accessing your LAN resources without a VPN... especially with a protocol like SMB. This is a real shame.

Also, if you want a firewall in AP mode, access from the WAN port, and the ability to use IP instead of KeenDNS, why did you choose Keenetic and not another brand? We focus on KeeneticOS, and, as you said, many people use our router, and we haven't received any such requests. There are many open-source alternatives that can achieve excellent results, such as PFsense, OPNsense, OpenWRT, etc.

[Wise Pds]

Good morning.
I don't think you understand me.
I don't access SMB from the Internet, I access it from LAN, but for Keenetic, my LAN is its ‘Internet’. There are only two home routers with advanced firewalls: Synology and Kennetic. With Synology, everything I'm saying can be done with two clicks.
Within the LAN network, we want to have several wireless networks, each of which can access a different network resource: some Wi-Fi networks only access the Internet, others access devices on the PFSENSE-SWITCH LAN, etc. We simply need the Keenetic OS firewall to WORK!

That's why I want to access SMB from the Internet (LAN). Let me put it another way:

I have a pfsense router... connected to a switch... and the Keenetic is also connected to this switch, along with other NAS devices, computers, printers, etc... A 2TB USB drive with folders is connected to the Keenetic.
There are four wireless network segments created on the Keenetic: Office, Workshop, Administration, and Management. Each one can access a folder and part of the main network resources (the network where PFSENSE, Switch, and Keenetic WAN are located). We can specify who can access what and where.

When I want to access the SMB folders from my computer (within the PFSENSE-SWITCH-KEENETIC-WISEPDS PC network), since I cannot do so from the WAN (which is my LAN), I should then connect to the Wi-Fi of any of the segments to be able to see the folders, whereas if I have WAN access, I can access all of them (with the necessary permission, of course).

What I'm saying is that you should let the FIREWALL take control. If I say that it can be accessed from the WAN with the subnet 192.168.3.0/24, then it should be possible. My firewall... my rules.

It's also very annoying that only with Keenetic's DDNS can you access the router via HTTPS, and you can't import my certificate or have a self-signed one.

I like Keenetic, but it has a lot of room for improvement, and here are two clear examples.

It's up to you whether you take my advice or not.

Thanks for response
Best regards
Manuel.