Ever since getting PiHole and pfSense running on my network, I’ve grown ever increasingly curious as to what the devices on my network are doing.
PiHole only does so much; it can’t see anything that isn’t DNS traffic, and it doesn’t see when a client communicates directly with an IP without contacting the PiHole DNS server.
pfSense (AFAIK) is quite limited in network traffic; all it does is give rough traffic analysis graphs of the LAN and WAN, without mentioning which internal IP’s are sending/receiving data with which external IP’s.
Is there any piece of software that meets that middle ground for me? That will tell me which LAN device is communicating with which WAN IP address? I’d imagine that software would have to be run somewhere between the pfSense box and the internal network, but I’m not sure.
Any help and suggestions welcome!