I have Asus RT-AC87U router in my home network. I would like to analyse packets on specific ports like Wireshark does. Is it possible to build such system that could make traffic going trough router analysis? How?
First things first, you need to enable ssh access on your router. Someone asked a question regarding this here
Once you have your ssh setup done, you can connect to your user via SSH using a Linux VM or Putty or any other tool that supports ssh. You can then use the tcpdump utility to scan packets. Example of tcpdump commands :
Scan on all interfaces (-i any) any traffic that has source or desto as 18.104.22.168 tcpdump -i any host 22.214.171.124 Scan on interface eth0 for any traffic going through port 443 tcpdump -i eth0 port 443
Let me know if you need help with the tcpdump utility.
If you use stock firmware, you first need to setup Entware following this guide:
And then you can install tcpdump with:
opkg install tcpdump