How Can I Monitor Traffic Behind Another Router?
-
I currently have a set up of a Gryphon Wireless Router for all of my wireless devices to connect to. A LAN cable connects the Gryphon WAN to my Netgate LAN port.
When I use Ntopng I see all device traffic bundled into a single IP, which is the Gryphon router. How can I view the IP's / Mac's from each device seperately instead of seeing everything as one IP?
-
If I understand your network structure correctly, you have your wifi router actually act as a router to a separate sub-net for your wifi devices. You've set it up to receive an IP (via dhcp client on the wan side probably) from your pfSense, and also distribute IPs (via dhcp server on the lan side) to your wifi devices. This way they are on a separate network, and only the router is a part or the pfSense's. To make your devices visible for you main router (pfSense) you need to use your wifi router as an access point only. Some home wifi routers have an option to be set up as such in bridge mode and you can still use your wan port to connect to pfSense's network, but most don't. Either way, you can just ignore the wan port, disable the dhcp server on the lan side of the wifi router, and connect it via one of the lan ports. Before doing that, on the lan side you need to set a static ip from the pfSense's network range, so you are able to see the router and thus access it for management purposes.
I hope that makes sense for you.
-
Thank you very much for the response. Yes, this makes sense to me. Using the Gryphon router is going to be a hindrance as they allow limited configuration of their equipment. It doesn’t allow turning off dhcp server or bridging to another router as an access point only. The only option I have is to discontinue use of the Gryphon router, which I now have done. Their limitations will limit me on my quest for pfSense to handle “all” things routing wise. I switched to an Aruba Networks IAP-205 Access Point and your provided solution has worked well. Thanks again