Best way to log internet activity on home network?

Discussion in 'Networking & Security' started by SSpiro, May 30, 2018.

  1. SSpiro

    SSpiro Limp Gawd

    Messages:
    259
    Joined:
    Jan 5, 2005
    Yes, i've had the discussions already with the family members about what is expected - however, I still want to be able to log what services are being used, sites accessed, time spent on these services, etc. I dance with the idea of key logging too but not sure if I want/need to go there yet.

    Need to log windows, OSX, IOS, and android usage. I can work with setting up a virtual machine and running applications, debian and/or sniffers, or if there is an "out of box/off the shelf" option that works well for all these platforms, i'm definitely interested in hearing more.

    What are you familiar with and what do you recommend?
     
  2. Cmustang87

    Cmustang87 [H]ardness Supreme

    Messages:
    4,275
    Joined:
    Oct 4, 2007
    A lot of people use squid proxies for this sort of thing and just place it inline as a transparent proxy. Chances are you will need to intercept HTTPS traffic too because of how much of the web uses HTTPS now. If you end up doing that, there's some extra configs you'll need to do on the squid proxy machine and also installing a certificate on your endpoints you're decrypting.

    To make this even simpler, I would suggest just getting a Sophos Home (free) box setup which has squid installed on it already so you can do all the filtering and manage it from a simple GUI.

    https://home.sophos.com/
     
    wolfofone likes this.
  3. k1pp3r

    k1pp3r [H]ardness Supreme

    Messages:
    7,816
    Joined:
    Jun 16, 2004
    OpenDNS home may log activity,
     
  4. Cmustang87

    Cmustang87 [H]ardness Supreme

    Messages:
    4,275
    Joined:
    Oct 4, 2007
    It can - but SSpiro won't be able to tell where the browsing is coming from since it would just be reliant on the NAT address to the internet. If the OP needs full visibility, he'll need something on network.
     
  5. k1pp3r

    k1pp3r [H]ardness Supreme

    Messages:
    7,816
    Joined:
    Jun 16, 2004
    I believe they have an agent installer for this, it doesn't help BYOD stuff though.
     
    Cmustang87 likes this.
  6. Cmustang87

    Cmustang87 [H]ardness Supreme

    Messages:
    4,275
    Joined:
    Oct 4, 2007
    Ah yea - the agent could help here for sure. I know Cisco Umbrella has a VM as an appliance you use as a DNS forwarder then it can log all the traffic. But Cisco Umbrella is probably a bit pricey for home...