This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Need Wireshark help on monitoring via the router from remote location

0

hello and thank you for your help in advance. i have a home network with several iPhones and iPads using wifi from an apple airport extreme router.this router is connected directly to the fiber optic ethernet of the cable company for the internet and i have it configured for setup over WAN. on this network i also have two iMac computers which connect to the internet via the wifi network from the airport extreme router, i think it is setup currently with WPA but not sure i know i can change that if i need to to get unencrypted data.

i have wireshark running on a mac pro on another location and i can access the router and the computers remotely at the home network.

i would like to monitor the wifi traffic on the home network and specifically sniff out passwords and or text messages and iMessages that are sent from the wireless clients to whomever via the wifi signal of the home network, also the web activity of the iMacs i can actually see by logging in directly from remote but i can not see passwords or anything else sent in packets thru the router, and i want to see that with wireshark

is this possible, ?? text messages specifically?? all are iPhones and all are using the wifi signal of my network to text and email etc

some emails are via web interface thru the wifi some ate smtp via wifi from apple mac mail platform so i have wireshark and have poked around in it but can not see how to choose a remote ip address to sniff traffic and not sure how to de-encrypt my network so that the info passwords etc can be viewed even if temporarily.

Thanks very much

asked 29 Oct '14, 04:39

panicgolf's gravatar image

panicgolf
11112
accept rate: 0%


One Answer:

0

help on monitoring via the router from remote location

See the answer for a similar question:

https://ask.wireshark.org/questions/20771/need-to-capture-3-ip-address-at-remote-location

Regards
Kurt

answered 29 Oct '14, 07:04

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

Thanks for the input, my situation is similar but i didn't share all details. i have a home network with a router that all wifi flows through, i can access that router remotely from another apple mac machine at a remote location, i dial into the router with the IP of the router, since the router is the wifi base also is that the iP i need to scrub for traffic? and do i run wireshark on the machine that is remote?

i can also connect to a machine on the network i am talking about and i can download wireshark onto the machine but that machine is not connected to the router but with a wifi signal, no ethernet. i could run WS from tat machine remotely but it would be the same as the original remote machine which is much easier....am i correct in this assumption??

i don't think any of the wifi devices flow through the machine i can access on the net work so i would not be capturing anything different.

now i do want to capture specific info from the machine on the network, so if running wireshark on that machine is better for that purpose that is an option.

i am specifically interested in a iPhone which connects to this home network often, that is the info i need also, texts, passwords etc if that can be seen with wireshark. if that can be seen with the access to the computer on the network then please let me know/ Thanks for your help

will wireshark work on a specific machine rather than sniffing a etowrk?? is there some port setting that i can just replicate on the machine in question to capture all the info i need? i own all the hardware and machines i am speaking of an have all authority to look for what i am . Thanks

(31 Oct '14, 14:46) panicgolf