Jump to content


Forum Members
  • Content Count

  • Joined

  • Last visited

Community Reputation

1 Neutral

About fl4co

  • Rank


  • Keenetic

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. I'm attaching the capture file, as you can see the queries for google.com, facebook.com and twitter.com made with dig received REFUSED as a response. I have to point out that is the Keenetic's private IP address. capture-Bridge0-May 2 22-59-25.pcapng
  2. Hello, I have a problem with DNS over TLS that I can't debug. If I'm using server from Quad9, I receive this output from dig, on Mac and on Linux: └─$ dig cnn.com ; <<>> DiG 9.16.13-Debian <<>> cnn.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 37374 ;; flags: qr ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ; COOKIE: 12882241105594ad (echoed) ;; QUESTION SECTION: ;cnn.com. IN A ;; Query time:
  3. Hello, I'd like to request the following feature. When executing ip dhcp pool $POOL_NAME update-dns the Keenetic's DNS server will add a record for devices that are assigned an IP address via DHCP, so every device with a private IP in the LAN will have an A record with the hostname passed via DHCP. It would be great if the Keenetic could add a reverse DNS record, so that private IP addresses would be pointed to the DNS name. I'm asking this because I use Pi-Hole to block ads as my DNS server, but I'd like to keep using the Keenetic as a DHCP server. Doing this makes it im
  4. Thank you for clearing this out. Now the the wg interface doesn't do NAT anymore as I intended. What does doing no ip nat Home imply, anyway? If I create a L2TP VPN then I will have to manually add ip static Home <l2tp interface> to be able to access the Internet through the tunnel?
  5. Hello, I recently bought a Keenetic Skipper router and I’m very pleased with it.However, there is one problem I can’t seem to be able to fix: I set up a WireGuard connection but I can’t disable NAT translation on the interface. When I connect to a WireGuard peer from a device behind the Skipper, the peer always sees the connection originating from the the Skipper’s WireGuard address and not from the actual device’s IP address.I tried entering the command “no ip nat Wireguard0” but it has no effect because I think that a NAT rule was not active on the interface to begin with.So how can I d
  • Create New...