KeeneticOS 4.3
KeeneticOS 4.3.2
22/05/2025
New
Added support for the Fibocom FM190W 5G NR, LTE USB modem module (
UsbQmi-type). [NDM-3849]Tip
To connect an LTE module to your Keenetic device, you can purchase a third-party USB adapter with a SIM card slot for the Mini PCI-E LTE module or M.2 LTE module.
Improved
The following improvements have been applied to the Web Interface.
Added the missing Transfer code label to the field for reusing KeenDNS domain names. [NWI-4013]
Disabled the Country of Operation and Time Zone fields on Mesh Wi-Fi System extenders. These parameters are synced with the controller. [NWI-4200]
Restored Username and Password fields as optional settings for
UsbModemmobile connections. [NWI-4004]
Improved compatibility of the OpenConnect VPN Server with VPN Client Pro for Android. [NDM-3838]
Enhanced Ping Check functionality with
UsbLtemobile connections. [NDM-3848]
Fixed
The following fixes have been applied to the Web Interface.
Resolved a
TypeErrormessage appearing when selecting the Country of Operation. [NWI-4178]Fixed the schedule display issue occurring when schedules were created via command line without descriptions. [NWI-4187]
Corrected an issue with accessing the Legal Information → Third-Party Software Notices and Information page. [NWI-4194]
Fixed incorrect application of the Segment default policy under specific circumstances. [NWI-4196]
Resolved a problem preventing the Wi-Fi Clients page from opening via the My Networks and Wi-Fi card on extender devices. [NWI-4197]
Corrected single-command execution via
ndmcin the OPKG environment. [NDM-3837]Restored proper handling of empty DNS Resolution Profiles to the behavior found in versions prior to 4.2. [NDM-3843]
Fixed network access issues for clients connected via the L2TP/IPsec VPN server within permitted network segments. [NDM-3715]
KeeneticOS 4.3.1
29/04/2025
New
Introduced the
session-logoutCLI command to terminate active VPN sessions across various servers (L2TP/IPsec, IKEv1/IPsec, IKEv2/IPsec, SSTP, PPTP, OpenConnect VPN ). [NDM-3788]crypto map l2tp-server session-logout {session}— Terminate{session}for L2TP/IPsec VPN server.crypto map virtual-ip session-logout {session}— Terminate{session}for IKEv1/IPsec VPN server and IKEv2/IPsec server.sstp-server session-logout {session}— Terminate{session}for SSTP VPN server.vpn-server session-logout {session}— Terminate{session}for PPTP VPN server.oc-server session-logout {session}— Terminate{session}for OpenConnect VPN server.
Improved
Fixed redundant exposure of device details in the Web Interface server, addressing vulnerabilities CVE-2024-4021 and CVE-2024-4022. [NDM-3783]
The following improvements have been applied to the Web Interface.
Users without system accounts are now shown in the File Browser → Permissions for the selected folder popup. [NWI-3951]
Alphabetically sorted the client list in Connection Policies → Policy Bindings for better navigation. [NWI-4092]
Automatically adds an
https://prefix when copying URIs if the camouflage option is active in OpenConnect VPN server settings. [NWI-4146]
The SMB file and printer sharing component now supports extended attributes, ensuring accurate copying of files with extended metadata to network resources. [NDM-3645]
Added random padding to TLS packets for enhanced connection stability on OpenConnect and SSTP protocols. [NDM-3791]
Fixed
Resolved incorrect assignment of the Segment default policy (
conform) for automatically registered clients in the home network segment. [NDM-3810]Fixed an issue with incorrect
crypto mapconfiguration in the L2TP/IPsec VPN server during upgrades from OS 4.2.x to 4.3.x. [NDM-3811]Addressed an issue where duplicate static routes were incorrectly assigned across multiple Connection Policies. [NDM-3814]
Corrected CLI saving issue for the
dyndns nobindconfiguration option. [NDM-3816]Fixed issues for clients accessing the local network over the OpenConnect VPN server. [NDM-3820]
Resolved various bugs and Web Interface layout issues affecting different screen resolutions. [NWI-4168, NWI-4161, NWI-3901, NWI-4108, NWI-3922, NWI-4083, NWI-4085, NWI-4122, NWI-4125, NWI-4136, NWI-4134, NWI-4135, NWI-4139, NWI-4141, NWI-4130, NWI-4169, NWI-4080, NWI-4160, NWI-4151]
KeeneticOS 4.3.0
10/04/2025
New
Added a new DNS server configuration option for IPv6 sub-networks via the command line interface (CLI). [NDM-3702]
ipv6 subnet {name} dns-server ({address1} [address2] | disable)— Assign IPv6 DNS servers or disable DNS for the specified subnet{name}
Improved
Removed the
CIFSsuffix from the device's mDNS name in the SMB Server application. [NDM-3648]Redesigned the My Networks and Wi-Fi card on the System Dashboard to improve visibility and include additional statistics. [NWI-4071]
Implemented the ability to delete static routes using the
route deletecommand when importing from Windows® batch files. [NDM-3778]Example command:
route delete 8.8.8.8/21 10.0.0.1
Fixed
The following fixes have been applied to the Web Interface.
Adjusted row heights in the Client Lists table to remove excess spacing. [NWI-4133]
Corrected the appearance of the Read more button in knowledge base article lists. [NWI-4137]
Fixed the colour of the separator line on the Network Ports card. [NWI-4145]
Restored missing buttons in the confirmation popup dialogue within Fail Safe Configuration Mode. [NWI-4143]
Improved text annotation spacing for better readability on mobile screens. [NWI-3872]
Resolved selection issues with segments in the Traffic Monitor pie chart on mobile devices. [NWI-4079]
Fixed a loading issue affecting the Applications page under certain conditions. [NWI-4104]
Addressed several display issues on the Connection Policies page for mobile users. [NWI-4114]
Corrected behaviour to retain the hidden state of the left-side navigation menu after closing and reopening the browser. [NWI-4120]
Resolved visual and functional issues introduced by updated styling of control elements. [NWI-4140]
Resolved a client isolation issue that previously allowed multicast and broadcast traffic between isolated devices. [SYS-1329]
KeeneticOS 4.3 Beta 4
27/03/2025
Improved
Improved compatibility with macOS Time Machine® functionality in the SMB file and printer sharing component. [NDM-3116]
Fixed
The following fixes have been applied to the Web Interface.
Resolved an issue where it was previously possible to create a user account for OPKG and Applications without setting a password. [NWI-3700]
Fixed tooltip display issues affecting longer lists within the Mesh Wi-Fi System interface card. [NWI-4062]
Resolved connectivity issues affecting devices using Intel® AC9260 and AC9560 Wi-Fi adapters when connected via WPA3-PSK security mode. [SYS-1325]
Corrected multicast forwarding to IPTV ports when Internet and IPTV services have different VLAN configurations. [NDM-3767]
Resolved an issue affecting the application of static custom routes to remote VPN client networks on the L2TP/IPsec VPN server. [NDM-3758]
Fixed an issue with applying Wi-Fi Channel width settings under specific conditions in the Wi-Fi settings interface. [NDM-3764]
Resolved an error causing the message
system failed [0xcffd00bd]to appear in the System log when saving IntelliQoS filtering profiles using the command line interface (CLI). [NDM-3770]Prevented the error message
Json::Object: AppendMember: duplicate key: 'fqdn'from appearing in the System log when using FQDN object groups. [NDM-3762]
KeeneticOS 4.3 Beta 3
13/03/2024
Improved
The following improvements have been applied to the Web Interface.
Increased visibility by displaying more options in drop-down menus. [NWI-3756]
Improved the layout of the Connection Policies page for better usability on mobile devices. [NWI-4049]
Implemented security measures to block remote hosts sending invalid
HTTP POSTrequests to the Web Interface. [NDM-3716]
Fixed
The following fixes have been applied to the Web Interface.
Fixed access to the Mesh Wi-Fi System page after adding a new extender. [NDM-3757] [Forum topic]
Fixed an issue where PPPoE authentication settings were unnecessarily reset after choosing Automatic (DHCP) as the Internet connection type. [NWI-4065]
Fixed the problem preventing reactivation of the Ethernet port once it had been disabled from the System Settings page. [NWI-4066]
Addressed a port conflict issue between WireGuard and OpenVPN connections when creating VPN tunnels. [NDM-3732]
Corrected the
User-Agentheader content when using the "anyconnect" protocol with OpenConnect VPN connections. [NDM-3733]interface {name} openconnect protocol anyconnect— enableanyconnectsupport for OpenConnect interface{name}
Fixed an issue causing WireGuard VPN connections to lose Advanced Security Configuration (ASC) settings after reconfiguration or reconnection. [SYS-1320]
Resolved remote connection problems with SSTP VPN Server when Web Interface access from the Internet was disabled. [NDM-3747] [Forum topic]
Eliminated the
duplicate key: grouperror logged in the System log when using FQDN object groups. [NDM-3755]Fixed the erroneous log entry
detected 5 attributes, only 4 supportedwhen using the Application Classification feature on the IntelliQoS page. [NDM-3756]
KeeneticOS 4.3 Beta 2
27/02/2025
New
Implemented automatic subdomain resolution for the
object-group fqdn {name}setting. [NDM-3726]Added a new command-line interface (CLI) command to enable this option:
opkg object-group fqdn {name} enable— Activates DNS resolution for the specifiedobject-group fqdn.
Improved
The following improvements have been applied to the Web Interface.
The Password field on the User Accounts page now includes additional security features: password strength assessment, automatic secure password generation, and a button to copy the password to the clipboard. [NWI-4030]
The left-side navigation menu (hamburger
button) has been redesigned for a more compact and organised submenu structure. [NWI-3839]The Show signal levels button is now disabled when no mobile connection is detected. [NWI-4015]
Proxy Connections now reset their traffic counters after a manual restart. [NDM-3724]
Updated the OpenSSL library to version
3.3.3, addressing the CVE-2024-12797 and CVE-2024-13176 vulnerabilities. [SYS-1306]
Fixed
The following fixes have been applied to the Web Interface.
Removed unnecessary browser warnings about unsaved changes during a device OS update. [NWI-3944]
Fixed an issue where the Wi-Fi toggle behaved incorrectly in the My Networks and Wi-Fi section of the System Dashboard. [NWI-4010]
Restored the missing SIM card not inserted status on the System Dashboard page. [NWI-4016]
Improved tooltip readability in the Application Traffic Analyser table. [NWI-4020]
Resolved a bug where an unnecessary unset password warning was displayed. [NWI-4033]
Fixed an issue causing a scroll bar to appear while dragging connections to adjust priority in the Policy Configuration list. [NWI-4044]
Addressed an issue where the Web Interface page would unexpectedly reload after a system update. [NWI-4047]
Fixed an issue with web cookie handling that caused the
Core::Scgi::Tools: bad request: no sessionerror during authentication in the Web Interface. [NDM-3713]Restored missing static DNS records for KeenDNS subdomains when the
ip http proxy dns-overridesetting is enabled. [NDM-3718]