I wish GlassWire would support sFlow or something like this! 
I could use it to monitor my whole network from the Mikrotik.
Mirroiring a port will also work, but require a PC directly into this port (you canāt use a PC you already have).
@nka Iāll check out sFlow, thanks. Is it an open standard anyone can use? I wonder how many users it has?
@Ken_GlassWire Yes, OpenFlow, sFlow, NetFlow are almost the same thing and itās a way for router to send data to monitoring device. Most entreprise grade router have that, but more and more residential router support it (even if itās more for techy like me).
Wow, I just noticed how many views this thread has. It looks like a lot of users want this feature!
3 Likes
Or we are refreshing too much? haha 
1 Like
Iām very interested in thisā¦ you might be interested in talking to this guy. Hes very nice and helpful and has made a pretty powerful(but very basic UI) bandwidth tracking app for DD-WRT routers. Iāve used it and it works decently well.
YaMon Bandwidth Usage Monitoring @ usage-monitoring com
1 Like
Iāve wanted this for a long time. I see how it would be challenging to implement, considering the different devices involved and how much sophistication it would require from customers.
Raspberry Pi is a good idea, but will be a bottleneck at common higher tier broadband speeds.
Also, how to do this without requiring a $200 license for home useā¦
Thanks for your feedback.
Just to be clear, GlassWire does not require a $200 license for home use. Our Elite software is for 10 PCs and it adds extra functionality to our free software. If we introduced this āinstall on routerā feature I think youād be able to use it for free, but youād have less history and less features than our Basic, Pro, and Elite versions.
GlassWireās free software never stops working or expires and youāre welcome to use it as much as you want.
I think I misunderstood the licensing. I will make a new thread to avoid taking this thread off topic.
Does GlassWire packet capture or process monitor? If it isnāt capping packets then port mirroring is likely to be useless. And Iām not sure running your traffic through a proxy server equipped with GlassWire would be any more useful. I may be off base but most routers only do flow metrics. What your talking about is a next generation firewall os for a router named GlassWire. But I canāt deny that it sounds sweet!
This: Ken_GlassWireAug '14
We use a Windows API. We donāt parse packets or anything like that.
1 Like
Iād be real interested to know which path GlassWire are going to take. But Iād be very surprised it the GlassWire team got into a custom router OS or proxy server because there are so many good products that already monitor networks.
GlassWireās strength is in making it easy to see what each process is doing on the network. So theyād be far better off working with existing standards (e.g. SNMP) and integrating with those network firewalls and the like.
I think that they have other options than passive capturing packets on the network capture and port mirroring at the switch. For example, Cisco Netflow, unlike sampling protocols like sFlow, provides sufficient detail for much of the traffic monitoring (incoming interface, IP protocol, source and destination IP addresses and ports, etc).
The major imponderable, from my point of view, would be how many device types will need to run GlassWire when those devices donāt provide an interface to get enough (or any) process info. In other words, I donāt think that theyāll have their software on every home appliance connected to the network unless a) it uses a major OS and b) the device is resourced (CPU, RAM, etc) to cope with the extra load.
1 Like
Diggin this up again (via google, trying to solve a problem of network monitoring). Does glasswire support this feature? Is there any other major recommendation on how to accomplish this? My router is running DDWRT, but im overall an amateur
1 Like
We donāt support it, but we hope to figure out a way in the future. Thanks for your patience.
I have a small Cisco ASA5505 that is sandwiched between two routers with span going to my laptop. The laptop is running Security Onion on a VM. I have Snort or Suricata IDS running at any given time. It captures all egress/ingress traffic and of course alarms on anything malicious.
Point is, if Glasswire could be built to interrogate traffic from a span or tap in promiscuous mode, it would accomplish what you want.
1 Like
We like this idea, but we worry only a small number of people would have the hardware to set it up. But maybe if we gave a link to buy the hardware and gave good instructions it would be successful.
Can it be done with a Rasberry Pi?
Sure can (span to ethernet/wireless for management.) You donāt need an ASA and can use a third party tab/span device to do this. Iāll get some names.
Iām considering replacing my setup with a Mini-Box and retiring the VM for something more permanent.
1 Like
I guess the big limitation with monitoring all the network traffic of a home is that you wouldnāt be able to get the information as to which application was running on the device. Perhaps if a daemon were running on each device that sent that information to the central monitor that would work, but then that kind of defeats the purpose of why I wanted to have a centralized solution in the first place (not having to install on each device). Is there a solution for this problem too?
1 Like
Thanks. Weāll check it out and see whatās doable.
Yes pleaseā¦ This would make keeping an eye on my childrenās on-line activities so much easierā¦
It would make sense (to me anyway) to have a little box with GlassWire firmware and software pre-installed on it, attached to the DSL Modem/Router, āfacingā inwards(to the LAN) and monitor all devices on the LAN (or as many as the purchased license supports). Just throwing ideas around.
1 Like