Posted: Fri Jul 24, 2015 20:08 Post subject: Simple question - web site log
Hi all. I hope I am posting this in the correct forum. Please redirect me if I'm not.
Months ago I set up dd-wrt on a new Netgear WNDR4500, using Firmware: DD-WRT v24-sp2 (02/04/15) giga. Following some helpful posts, I was able to set up OpenDNS and dyndns on my home network.
Everything is working fine. OpenDNS blocks what it needs to (I have kids in the house) and all is well.
However, as the kids get older and their friends spend more time here, I would like to be able to see which device is accessing which web sites, especially when I see that they were blocked by OpenDNS. When I look at the OpenDNS log, it only tells me what sites were blocked. I don't believe it has the ability to tell me when or by which device.
I'm hoping there is a SIMPLE solution within DD-WRT. I tried RFlow and some other solutions, with no luck. It may have been user error. We have only one parent computer and no spare machines to act as a log collector.
Please point me in the direction of the simplest solution. Many thanks in advance!
Posted: Fri Jul 24, 2015 22:17 Post subject: Re: Simple question - web site log
matbudz wrote:
Hi all. I hope I am posting this in the correct forum. Please redirect me if I'm not.
Months ago I set up dd-wrt on a new Netgear WNDR4500, using Firmware: DD-WRT v24-sp2 (02/04/15) giga. Following some helpful posts, I was able to set up OpenDNS and dyndns on my home network.
Everything is working fine. OpenDNS blocks what it needs to (I have kids in the house) and all is well.
However, as the kids get older and their friends spend more time here, I would like to be able to see which device is accessing which web sites, especially when I see that they were blocked by OpenDNS. When I look at the OpenDNS log, it only tells me what sites were blocked. I don't believe it has the ability to tell me when or by which device.
I'm hoping there is a SIMPLE solution within DD-WRT. I tried RFlow and some other solutions, with no luck. It may have been user error. We have only one parent computer and no spare machines to act as a log collector.
Please point me in the direction of the simplest solution. Many thanks in advance!
You can use the adblocking proxy to do that. You should attach a usb device where you will store the logs, then enable adblocking Services->Adblocking enable transparent mode so http traffic is redirected through privoxy, then use custom configuration and enable debug e.g.:
Posted: Fri Jul 24, 2015 23:32 Post subject: Re: Simple question - web site log
Quote:
You can use the adblocking proxy to do that. You should attach a usb device where you will store the logs, then enable adblocking Services->Adblocking enable transparent mode so http traffic is redirected through privoxy, then use custom configuration and enable debug e.g.:
logdir is the path where the log will be stored, in this example I used usb setup to mount a specific partition to /opt
debug 1 means Log the destination for each request Privoxy let through
Now you can look at the logfile and determine the ip for each request.
Thank you for the quick reply.
I put in a usb drive, pasted in the code you gave, hit apply, and then I could get no web pages to load on any device. I could ping pages just fine. I removed the custom config for the moment and all is good again.
Is the problem in my failure to set up ddwrt for usb? This is completely new to me. Should I set up usb as in the attached screenshot? Also, do I need to do anything on the usb drive itself? Also, do I view the log while it is attached to ddwrt or do I physically remove it? If I physically remove it, do I need to eject/unmount it first, and how?
Change the volume name on your usb stick to opt and it will automount as /opt. _________________ Segment 1 XR700 10Gb LAN, 1Gb WAN ISP BS
Wired AP 1 Unifi Wifi 6 LR US 1Gb LAN
Wired AP 2 Unifi Wifi 6 LR US 1Gb LAN
Wired AP 3 Unifi Wifi 6 LR US 1Gb LAN
Syslog Services Asustor 7110T NAS 10GB
NetGear XS716T 10GB Switch
download1.dd-wrt.com/dd-wrtv2/downloads/betas/ (Brain Slayer)
YAMon https://usage-monitoring.com/index.php