When it comes to ensuring safety and responsibility on the Internet, proper education and a policy of mutual trust and respect are the best policies. But who am I kidding? The web is a vast playground of debauchery and anthropological horrors, and it’s a teenager’s prerogative to occasionally peer over the Gates of Mordor into the land of shadows. From porn and bomb-building guides to Facebook and Twitter, the Internet is a vast cornucopia of potentially hazardous material. For the most part, I’m of the opinion that a little bit of minor mischief is harmless, and perhaps even character building, as long as they come out relatively unscathed. But if you’re interested in sheltering your child, there’s an equally lavish smorgasbord of parental control and net nannying tools at your disposal.
The logical route for today’s concerned, yet lazy, parent is to shell out hundreds of bucks for some off-the-shelf piece of software that they can install on their kid’s computer. The problem is that a quick Google search reveals a dozen workarounds for even the most expensive parental censoring spy tools. Making matters worse, by installing the software on their machine, you’re immediately tipping your hand by revealing that [A] you are watching them and [B] which tool you are using.
The better way to do things is to take a page out of the government’s book and surreptitiously and warrantlessly monitor all Internet traffic that goes out of your house. This is a better way because it prevents them from using a browser with an Incognito Mode or simply clearing the browser history (perhaps the first thing a mischievous tot learns how to do on the computer). If only there was some sort of gateway that stood between your house and the World Wide Web…oh wait, there is. It’s your router.
In this tutorial, I’ll show you how to retrieve the web traffic log from a NETGEAR WPN824v2 router and how to block certain websites for selected computers in your house—all without installing a single piece of software on your kid’s computer.
[Note: If you have a NETGEAR router, the steps will probably be similar, but may vary slightly. If you have another router, such as a Linksys, Cisco, Belkin or D-Link router, the steps will look completely different. But I’m willing to bet you can achieve the same outcome by poking around.]
Accessing Your Router’s Settings Page
From any computer, access your router’s setup page by typing in its IP address into your browser window. For me, it’s 192.168.1.1. Try clicking that and see what happens.
If that doesn’t work, open CMD.exe and type ipconfig /all and look for the field that reads default gateway.
A Quick Note About Your Default Password
You’ll probably be prompted to enter a username and password. You probably don’t remember what this is. Try admin / password or admin / 1234 or admin / admin or root / root. You can also Google your router’s model number and “default password.” Once you’ve done that, you should definitely change it. On the NETGEAR page, it’s Maintenance > Set Password
Viewing Your Logs
To get a feel for what we’re working with, go ahead and Click Logs under “Content Filtering.”
Initially, this is going to be a bunch of mumbo jumbo. But don’t worry, we’ll make sense of this. If you can already parse out all this info, then great. If not, read on.
What you want to pay attention to in this screenshot are the IP addresses for the Source. This is how we’ll track who was looking at what. Here, we see that all the activity is coming from 192.168.1.6. That’s my computer. How do we know? See below.
Viewing Attached Devices
Click Attached Devices under “Maintenance” to see.
This lists all the devices that are attached to the router. As you can see, 192.168.1.6 is JACK-WIN7, which is what I named my main computer. PHONEY-BALONEY is my iPhone. HP8D41B1, I’m assuming, is the netbook sitting open on my kitchen table. Or it could be my neighbor stealing my WiFi. At any rate, this is a useful page to remember.
To illustrate, I’ll visit yahoo.com on my iPhone and see if it shows up in the logs:
Now, I’m going to hazard a guess and assume that you don’t want to spend your evenings sifting through the log, matching up IP addresses to salacious websites. Luckily, you can automate it somewhat by blocking sites.
Blocking Sites
Blocking sites and services on your router restricts access to certain websites or activity on certain ports. This is a rock solid way to police web activity because it can’t be circumvented from a computer. You have to access the router to change this.
Click Block Sites under “Content Filtering.” Here, you can enforce restricted websites by punching in keywords to add to your block list. You can choose to block websites according to a schedule (Click Schedule to choose the times/days of the week to block) or you can choose to block them always.
Notice along the bottom that you can add a trusted IP address. In this case, I don’t want to block myself from these sites, just my untrustworthy kids. Remember that my IP address is 192.168.1.6, so we can punch it in here to give us full access. Note that this presents a potential workaround, as a clever user could find a way to get assigned that IP. Use at your own peril.
Now, when you try to visit a blocked site, you see this:
Note that one may be able to circumvent this kind of filtering by typing in an IP address directly (for example, to get to Facebook, just type 69.63.189.11 into the browser window). To avoid this, add the known IP addresses to your block list.
Tip: If you want to block all Internet access, say, after 9PM, use the Block Services tab and choose HTTP from the dropdown. Then make sure you specify the IP address for the restricted devices.
E-mail and Alerts
Using the E-mail tab, you can have your router email you the logs on a daily/weekly/hourly basis or each time someone tries to access a blocked website. Or, you can send the logs manually from the Logs page. 
Either way, the email will usually show up in your Spam folder, so be sure you filter it correctly.
What I suggest doing, rather than actively blocking sites, is to set yourself up a Gmail filter that scans your logs for certain keywords and then stars them. This will save you a lot of time sifting through the logs manually and also prevents your suspects from knowing that your monitoring their activity.
With a filter like this, you can get a daily report of your son or daughter’s web activity, as well as a flag each time certain keywords show up. All without them knowing.
Conclusion
Using NETGEAR’s built-in security tools, you can easily monitor all network traffic going into or coming out of your home. The advantage of this is that there isn’t any software installed on your child’s computer, meaning that it’s harder for them to detect and nearly impossible for them to get around. They could use proxy sites, but that’s a pain in the butt and easily picked up on if you look at the logs. The main limitation is that you won’t be able to see any web browsing that’s done on their smartphone or tablet via a cellular data network (e.g. 3G, 4G).
And I want to reiterate that properly educating your kid about safe web browsing activities is the first and most important step to keeping them in the clear on the web. A lot worse can happen to anyone on the web who doesn’t know basic web safety principles. And that goes beyond watching bootlegged episodes of South Park or a risqué CollegeHumor.com video. From viruses and phishing schemes to sexual predators and dangerous misinformation from irresponsible news journalists, there’s a lot out there that can harm your child and your family that can’t be stopped through Big Brother-style monitoring. Your energy is far better spent trying to teach your kid to be a responsible and thoughtful consumer of media.
But if you are ever suspicious that your kid is involved in something way over his or her head, these tools may be able to help you catch it before something disastrous happens.
Okay, enough preaching. Godspeed, you paranoid parent, and happy spying.
It goes without saying that this would also work for employees, though I think there are more professional solutions out there.
excellent issues altogether, you simply received a brand new reader. What may you suggest about your publish that you made some days in the past? Any sure?
hi i am ankit
how to block Https sites using netgare router
my email id is ankite@unisysinfo.in
I’m having issues figuring out how to use the email function to email my Gmail account but you seemed to have it working for you in your snapshots. Mind lending me a hand?
Hi @Jake – Could you ask your question with specific details in our help forum? – http://answers.groovypost.com
We should be able to help you out there — and the entire community for that matter will lend me hand in troubleshooting your issue.
Thanks,
-S
My Netgear router is newer than the one in this article but has most of the same settings. I have a parental controls option where I can set up alerts and logs through email. I’d like to set up email notifications of those logs “when someone attempts to visit a blocked site” to my gmail account but can’t seem to get the settings right. You have a picture above under “Email and Alerts” which seems to use a gmail account to receive those alerts. Any help you can give would be great!
Hi, Thanks for the article. My son was using opera mini browser to get around my parental controls.Unfortunately your article did not help and he can still browse, using this proxy browser. Is there a way of blocking opera mini? thanks
Hi, when I try to log in to my netgear router, ii shows only router login info and blocked site loin info, please could you let me know how to set it up to get the login info of all the websites visited.
Thanks.
So I set all controls and set my new password, i have a Netgear router.
All my daughter does is press in the little reset button in the back of the router
and its game over, everything is reset or at least the password goes back to
admin and i have to do this all over. Its useless!
Any help would be greatly appreciated.
thanks,
Gary
What you might try is setting up a white list on the browser instead….
I am following the instructions above to be able to view internet traffic on my wireless router (mostly sites visited by my 3 children). I came as far as opening CMD.exe and type ipconfig and looked for the field that reads default gateway as shown in your screenshot.
For me this line shows up empty. Only Default Gateway and then blank.
Would you know why this would be. I got my router (Netgear) from our internet service provider. Upon ringing their client service department, I was told that it was probably pre configured by them because seeing the log that I wanted would be totally comprimising my network security.
I am trying to do everything you say step by step, as it is set out very clearly, though I have no idea what I am doing. Any light you can shed?
if someone resets the router, is all of this erased??
Okay, First of all, it shames me to see so many comments on this article. I will not even bother to comment on why, but everybody wants to be a spy watching what other people do, let your children Grow up the same way you did, without someone censoring everything they do, it does not work. Yes all they have to do is reset the router and all of your hard work that you set up to watch what they do is gone. Children are curious and they are smarter than their parents today, so please do not go through all this trouble to try to watch where they are going on the internet because they will outsmart you and they will never forgive you for it. I was 11 when the internet was first accessible to me in my house and I spent days looking at whatever I wanted to, and I turned out fine, so don’t bother, just talk to your children.. that is all you have to do.
really, jimmy? how many kids do you have? do you take them to times square and drop them off, and tell them ‘i turned out fine, so will you?’ likewise don’t expose them to all that is on the internet. it’s much much worse.
Hi @bb6138a0b7ad8a29c3d26c78beb7f4da:disqus. Thanks for the comment however I’m with Joe on this one. I don’t agree with you at all.
Sure, children do need to have freedom to learn and grow however I wouldn’t be doing my job as a parent if I didn’t work hard to protect their young minds from garbage on the internet including violence, porn etc… There’s a reason I let them watch Curious George vs. Debbie does Dallas.
Looking back to when I was a kid (80′s and early 90′s), yes there was a lot of trash out there however however it was very hard to access vs. just flipping on the PC and typing a simple query into Google.
Now looking forward I plan to loosen my control over both their online and offline life however as it stands today, I keep a tight grip on what they are exposed to. After all, that’s my job.
The only problem with tutorials such as these being on the net for parents, parents must also be aware that there are such tutorials for their kids to undo these blocks. There are better ways to do this, such as merely blocking certain keywords without the spying on content. Tell them you’ve done it, and say they can ask you to unblock content if they want/need on it (for example: blocking sex-related terms can block biology sites they may need for research. I’ve had it happen to me.). It also does not hurt to have the computer somewhere easily visible that you, as parents, can regularly walk by.
But be aware: at some age they will find those things you tried to hide. they will access porn, they will find the violent pictures. It will happen eventually, so don’t keep insisting they stay as sheltered as they were at 12 when they reach the age of 17.
Mount the router on the ceiling out of reach. DUH.
>:) Parents are IT professionals, and I felt like this was necessary to give them a “taste of their own medicine” xD
Hello! I am the biggest idiot when it comes to computer anything I swear..lol..your post was very educational. I have a very insecure boyfriend who is always spying on me and checking to see if im being unfaithful. Time and time again he will gain access to my emails or facebook and I finally think Ive figured out how hes doing it.
My question is, if I go on facebook while connected to our wifi from my cell phone will he be able to access my facebook directly from the traffic history or does the history show any of my passwords I use
First, this is not a page out of the government’s book as you like to put it. Your Internet Service Provider (ISP), the company you pay for internet service, would be the culprit monitoring you.
Couple of things about router logs…
1) this is VERY basic monitoring.. that fails to identify websites that use shared hosting or that do not reverse dns to the websites domain but instead the actual hosting domain which is pointless since most hosting admins honor their clients privacy
2) router logs also are worthless if person uses one of the 1000s of web proxies available fast n free (proxy dot org)
3) router logs expire quick so you wont always know what IP they visited unless you monitor them 24/7
this method of monitoring is a complete waste of time, thankfully I had enough sense to skim through it, rather than waste my life reading this worthless tutorial
If you want to monitor people with your router, your best bet is to get a program like “dsniff”, its for advanced users only, but its certainly more effective than your router firewall. Honestly, understanding computers is not for everyone. So don’t beat yourself if you cannot setup dsniff. Just pay a professional to do it or find an alternative to spying
This is rather ineffective to be honest. Not only have to watch for router tampering, proxies, but could just connect to an open router. Ipod touch anybody?
Netgear Router stats and logs are so basic they are rubbish! What Netgear should do is provide a historical graph of network usage per device so we can see how much traffic and when each connected device uses. At the moment our internet in the office is slow and I have difficulty knowing what machine or person is using it.