G
G
grunt4122021-12-30 19:21:34
Computer networks
grunt412, 2021-12-30 19:21:34

Is it possible to filter smartphone traffic passing through it on a computer?

To access the Internet, a smartphone connects via wifi to an access point, which is a computer (that is, a wifi access point is created on the computer). The computer itself is connected via wifi to the router.

1) Is it possible to filter smartphone traffic on a computer? That is, deny / allow connection to certain ip addresses / address ranges, hosts.

2) If yes, how is it implemented?

3) Is it possible to filter smartphone traffic on a computer using a firewall?

4) How does the firewall see smartphone traffic going through the computer? (Like some service or application like browsername.exe or appname.exe)

5) Is it possible to filter smartphone traffic on a computer using fiddler, charlesproxy, wireshark? This is a proxy and a traffic analyzer, but maybe they have such a function?

6) Is it possible to find out in fiddler, charlesproxy, wireshark which smartphone applications the Internet uses? And not just a general list of all addresses to which the device connects.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
A
Armenian Radio, 2021-12-30
@gbg

1) In a limited sense. If a VPN is running on your smartphone, you will see traffic from that VPN and nothing else. (And you won't see DNS requests either)
2) Different software that you list in other paragraphs
3) You can.
4) He sees packets that run-yell from one interface to another interface. Not as a service.
5) It’s possible to get the hell out of a bald man with the rules in a wireshark, but is it necessary?
6) You can't.
It is important to understand that most applications use HTTPS with a pin, so the maximum that you filter is to completely cut off some service (because you will not see requests), the content of the traffic will also be inaccessible to you - because adequate developers use the certificate pin, therefore, even slipping a certificate onto your phone will not help you read the traffic.
Summary - your Wishlist is feasible against applications whose developers are completely lop-eared and use HTTP or HTTPS without a pin. But even such developers can be helped by using a VPN.

W
White Prime, 2021-01-01
@WhitePrime

In my opinion, there are several solutions:
Use NextDNS or any analogues to your taste;
Raise and configure Adguard Home;
If this option is too easy, pick up and configure RouterOS on the computer.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question