Attempting to monitor home network with new managed switch

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

monsterenergy22

Occasional Visitor
Good morning!

I am trying to monitor all of my home network traffic (wired and wireless) but am having some difficulties with connectivity. I will be using the switch to mirror ports once I get all the connectivity issues sorted out. I have AT&T U-Verse with the following hardware and all connected via Cat 6.

Switch = TP-Link TL-SG108E 8 Port Gigabit Managed Switch
Wireless router = TP-Link Archer AX20 (currently in wireless router mode)
AT&T Gateway = Arris BGW210-700 (currently set up with IP Passthrough)

My physical connectivity is below:

Internet >> AT&T Gateway >> Wireless Router >> Switch + Network Tap

Connectivity works fine here but I lose visibility into my wireless traffic since its upstream from the network tap.

I thought about switching my wireless router to AP mode but then I would lose the ability to set custom DNS servers.

What do you recommend for getting this setup working properly?

I appreciate any help and suggestions!
 
Last edited:

ColinTaylor

Part of the Furniture
Connectivity works fine for wireless devices but none of my wired devices (all plugged into the switch) have any connectivity and cant get a DHCP address from the wireless router.
Of course this won't work because your wired devices aren't connected to your router's LAN (they are connected to the WAN side).
 

ColinTaylor

Part of the Furniture
The traditional way to do this would be to insert the switch between the gateway and the router but leave the rest of the network alone. Then mirror the traffic to the desired port on the switch. Connected to this port would be a standalone (i.e. not connected to the LAN) monitoring device (e.g. PC, laptop, etc.). If the monitoring device needs connectivity to the LAN you would use a second network interface for that.
 

monsterenergy22

Occasional Visitor
Thanks for the explanation. To make sure I understand - on the switch I would only have the uplink to ATT gateway, link to wireless router, and mirror/link to monitoring device?
 

ColinTaylor

Part of the Furniture
Thanks for the explanation. To make sure I understand - on the switch I would only have the uplink to ATT gateway, link to wireless router, and mirror/link to monitoring device?
Correct. Although I will qualify that by saying I'm talking in general as I have no personal experience with TP-Link devices (I'm more familiar with Cisco stuff).
 

monsterenergy22

Occasional Visitor
Understandable, I am hoping it will apply/work the same here.

With this set up, will I run into any problems plugging an unmanaged switch into the wireless router to give me some additional ports?
 

monsterenergy22

Occasional Visitor
Awesome, thank you!

I think the only remaining question I have is around 2 ATT uverse IPTV boxes. They need IGMP Proxying to work and are working fine at the moment but are also plugged into the managed switch. My wireless router does support IGMP proxying/snooping so I imagine I should be ok plugging them in directly to the wireless router?
 

ColinTaylor

Part of the Furniture
I've not used IPTV services but I believe they use VLANs. So I'd guess it would work provided the switches tagging and VLAN ID's were set correctly.
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top