Skip to content

cataseven/Keenetic-Router-Pro

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

235 Commits
.github
.github
Β 
Β 
custom_components/keenetic_router_pro
custom_components/keenetic_router_pro
Β 
Β 
images
images
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
hacs.json
hacs.json
Β 
Β 

Repository files navigation

Keenetic Router Pro - Home Assistant Integration

Downloads hacs_badge version

Buy Me a Coffee

An advanced Home Assistant integration for Keenetic routers. Provides mesh network management, VPN control, device tracking, traffic monitoring, firmware updates, and more.

🌟 Features

πŸ“‘ Real Time Device Tracking

  • Real-time device status via ICMP Ping. You don't need to wait Keenetic's update time for device tracking. This integration pings the devices you selected every 3 seconds.
  • Selectable client list
  • 3-second update interval
  • Automatic updates on IP address changes

Important

⚠️ If Apple iOS devices are registered with client name including 'apple', 'iphone' or 'ipad' then they will NOT be pinged every 3 seconds. Instead, they will sync with the status on the Router's interface. This is because they go into Deep Sleep mode and disable WiFi connection even when they are connected to WiFi.

πŸ”— Mesh Network Management

  • Status of all extenders/repeaters (binary sensors)
  • Separate reboot button for each mesh node
  • CPU, RAM, and uptime information per node
  • Firmware version sensor for each node
  • Firmware update entity with update-available detection
  • Number of connected clients (associations) per node
  • Traffic monitoring per node (WiFi 2.4GHz/5GHz, LAN, WAN RX/TX)
  • WiFi radio temperature per node (2.4GHz / 5GHz)
  • USB storage detection on mesh nodes

πŸ”„ Firmware Updates

  • Update entity for the main router (with install + progress support)
  • Update entity for each mesh node (info-only)
  • Firmware version sensor (current version, channel, architecture details)
  • Binary sensor for update availability

πŸ” VPN Management

  • Enable/disable WireGuard profiles (switch)
  • OpenVPN, IPsec, L2TP, PPTP support
  • VPN uptime, RX/TX sensors

πŸ“Ά WiFi Control

  • Enable/disable switch for each SSID
  • Guest WiFi control

🌐 WAN Status

  • Real WAN IP address (PPPoE supported)
  • 3-state connection status:
    • connected β€” link up and IP address assigned (internet working)
    • link_up β€” link up but no IP address (ISP issue / DHCP waiting)
    • down β€” interface down or not found
  • PPPoE uptime sensor

πŸ“Š Traffic & Diagnostics

  • WiFi 2.4GHz / 5GHz RX/TX traffic (GB)
  • LAN / WAN RX/TX traffic (GB)
  • WiFi radio temperature (2.4GHz / 5GHz)
  • Active connections count
  • USB storage detection

πŸ”Œ Port Monitoring

  • Physical port status for the main router and all mesh nodes
  • Link state (up/down), speed (100/1000 Mbps), and duplex mode per port
  • Includes LAN ports, WAN/ISP port, and SFP port

πŸ“± Wi-Fi QR Code

  • Scannable QR code image entity for your main Wi-Fi network
  • Scan with any phone camera to connect automatically β€” no manual password entry needed
  • Guest Wi-Fi QR code (if guest network is configured)
  • QR code updates automatically when SSID or password changes

πŸ‘₯ Client Management

  • Number of connected / disconnected devices
  • Connection Policy selection (per client)
    • Default, VPN, No VPN, Smart Home, Roblox, etc.
    • Deny (block internet access)
  • Event trigger when a new device connects

πŸ”˜ Buttons

  • Router reboot
  • Mesh node reboot (separate for each node)

image4 image5

image4 image5

image4

πŸ“¦ Installation

Via HACS

  1. Search for "Keenetic Router Pro" and install
  2. Restart Home Assistant

βš™οΈ Configuration

1. Web management interface must be enabled on the router

2. πŸ”’ Security, Firewall & Port Forwarding

To use this integration securely, it is strongly recommended to configure Firewall rules and Port Forwarding properly on your Keenetic router. This section explains why it matters and how to do it.

3. ⚠️ Why Firewall Configuration Is Important

  • Home Assistant communicates with the router via its web management API
  • Exposing router services directly to the internet without restrictions is a security risk
  • Proper firewall rules ensure:
    • Only trusted devices (Home Assistant) can access the router
    • No unintended WAN access to router management services

Think of the firewall as a bouncer with a clipboard. Only invited guests get in.

4. πŸ”Œ Port Forwarding

How to Configure Port Forwarding

  1. Enable UPnP if it is not
  2. Go to Internet > Port forwarding
  3. Add a new rule:
Setting Value
Service Home Assistant Router API
Protocol TCP
External Port 100
Internal IP Router LAN IP (e.g. 192.168.1.1)
Internal Port 79

image1

🚫 Never expose port 80/443 to WAN without firewall rules

5. πŸ›‘οΈ Firewall Rules (Recommended & Safe)

Use Firewall rules to restrict access.

Recommended Firewall Setup

  1. Go to Network Rules > Firewall
  2. Create a new rule for your PPPoE connection:
Option Value
Direction Input
Source Home Assistant IP (e.g. 192.168.1.50)
Destination Router
Service Custom port
Action Allow
  1. Create a second rule:
Option Value
Direction Input
Source Any
Destination Router
Service Custom port
Action Deny

βœ… Ensure only Home Assistant can talk to the router API.

image2

6. Add the Integration

Settings > Devices & Services > Add Integration > Keenetic Router Pro

7. Connection Details

Field Description Example
Host Router IP address 192.168.1.1
Port Web interface port 100
Username Admin username admin
Password Admin password ********
Use Challenge Auth Enable for newer models (e.g. Hero) that use NDW2 authentication off

Note

Use Challenge Auth is required for newer Keenetic models such as the Hero series that use NDW2 challenge-response authentication instead of Basic Auth. If the integration fails to connect on a newer model, try enabling this option. Older models should leave it disabled.

8. Select Devices for Tracking and Other Device based managements

During setup, you can choose which devices should be monitored via ping.

πŸ“Š Created Entities

Main Router

Sensors

Entity Description Category
CPU Load CPU usage percentage β€”
Memory Usage RAM usage percentage β€”
Uptime System uptime in seconds β€”
WAN Status Connection state: connected, link_up, or down β€”
WAN IP External IP address (PPPoE supported) β€”
PPPoE Uptime PPPoE session uptime β€”
Connected Clients Number of active clients β€”
Disconnected Clients Number of inactive clients β€”
Extender Count Number of detected mesh nodes β€”
Active Connections NAT connection tracking (conntotal - connfree) β€”
Firmware Version Current firmware with release, channel, architecture details Diagnostic
WiFi 2.4GHz Temperature Radio module temperature Diagnostic
WiFi 5GHz Temperature Radio module temperature Diagnostic
WiFi 2.4GHz RX / TX Cumulative traffic in GB Diagnostic
WiFi 5GHz RX / TX Cumulative traffic in GB Diagnostic
LAN RX / TX Cumulative traffic in GB Diagnostic
WAN RX / TX Cumulative traffic in GB Diagnostic
USB Storage USB device info (if connected) Diagnostic
Port 0–4 Physical port link state, speed, and duplex Diagnostic

Images

Entity Description
Wi-Fi QR Code Scannable QR code to connect to main Wi-Fi network
Guest Wi-Fi QR Code Scannable QR code to connect to guest network (if configured)

Binary Sensors

Entity Description
Firmware Update Available on when a new stable firmware is available

Update

Entity Description
Firmware Update Shows current/available version, install with progress tracking

Switches

Entity Description
WiFi SSID (per network) Enable/disable each WiFi network
VPN Tunnel (per profile) Enable/disable WireGuard, OpenVPN, IPsec, L2TP, PPTP

Select

Entity Description
Connection Policy (per tracked client) Choose access policy: Default, VPN, Deny, etc.

Buttons

Entity Description
Reboot Router Reboot the main router

Device Tracker

Entity Description
Client Tracker (per tracked client) ICMP ping-based presence detection (3s interval)

Per Mesh Node (Extender / Repeater)

Each mesh node appears as a separate device in Home Assistant with the following entities:

Sensors

Entity Description Category
Uptime Node uptime in seconds β€”
Clients Number of associated clients β€”
Firmware Version Current firmware with hardware ID and model details Diagnostic
Port (per port) Physical port link state, speed, and duplex Diagnostic

Note: Traffic and temperature sensors are only created for interfaces that exist on the node. Not all extenders have all interfaces.

Binary Sensors

Entity Description
Mesh Node Status on when the node is connected
Firmware Update Available on when a new firmware is available

Update

Entity Description
Firmware Update Shows current/available version (info-only, no remote install)

Buttons

Entity Description
Reboot Reboot this specific mesh node

πŸ”” Events

keenetic_router_pro_new_device

Triggered when a new device connects to the network.

automation:
  - alias: "New Device Notification"
    trigger:
      - platform: event
        event_type: keenetic_router_pro_new_device
    action:
      - service: notify.mobile_app
        data:
          title: "πŸ†• New Device Connected"
          message: "{{ trigger.event.data.name }} ({{ trigger.event.data.ip }})"

Event Data:

  • mac: MAC address
  • name: Device name
  • ip: IP address
  • hostname: Hostname
  • interface: Connected interface
  • ssid: WiFi SSID (if applicable)

🌍 Language Support

  • πŸ‡¬πŸ‡§ English
  • πŸ‡ΉπŸ‡· Turkish
  • πŸ‡·πŸ‡Ί Russian

πŸ”§ Requirements

  • Home Assistant 2024.1.0 or newer
  • Keenetic router (NDMS 3.x / 4.x / 5.x)
  • Web management interface must be enabled on the router

Tested Models

Model Auth Method
Keenetic Ultra (KN-1810) Basic Auth
Keenetic Hopper (KN-3810) Basic Auth
Keenetic Buddy 5 (KN-3311) Basic Auth
Keenetic Air (KN-1610) Basic Auth
Keenetic Hero (KN-1012) Challenge Auth (NDW2)

Tip

Not sure which auth method your router uses? Try Basic Auth first (default). If the connection fails, switch to Challenge Auth.

πŸ› Troubleshooting

Connection Error

  1. Verify router IP address and port
  2. Verify username and password
  3. Ensure the web interface is enabled on the router
  4. If you have a newer model (e.g. Hero), enable Use Challenge Auth in the integration settings and try again

Entities Not Appearing

  1. Restart Home Assistant
  2. Remove and re-add the integration

Ping Not Working

  • Home Assistant must have permission for ICMP ping
  • Docker installations may require network_mode: host

WAN Status Shows link_up Instead of connected

  • This means the physical link is up but no IP address was assigned
  • Check your ISP connection or PPPoE credentials
  • The sensor will change to connected once an IP is obtained

Mesh Node Sensors Missing

  • Mesh diagnostics require direct RCI access to each node's IP
  • Ensure mesh nodes are connected and reachable from Home Assistant
  • Nodes using different credentials than the controller will not report diagnostics

πŸ“„ License

MIT License

Buy Me a Coffee

⭐ If you like this project, don't forget to give it a star!

About

High level Keenetic Router integration for Home Assistant including instant device_tracker mode

Topics

router integration home-assistant modem device-tracker keenetic keenetic-routers keenetic-router

Resources

Readme

License

Apache-2.0 license
Activity

Stars

8 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases 15

πŸ›Bug Fix Latest
Mar 29, 2026
+ 14 releases

Packages

 
 
 

Contributors

Languages