No received ipv4 packets that were actually received by iot

asked 2023-11-03 02:41:29 +0000

Wireshark is not capturing the RX (Received packets) even when I send successful commands to internal cameras, plugs, lights, etc and devices and they take action.... They only show TX packets for some reason. I have the info and some links below just in case anyone is interested or has further suggestions, here is the 1) network diagram, 2) Stats 3) Wireshark Apple vs. Windows link for wireless monitoring mode. Note that the interface option is Ethernet in promiscuous mode on a windows PC attached to the mirrored port. Could it be related to the inbound firewall rules or an internal network logging restriction ? What firewall rule should be applied to be able to view Wireshark

  1. Network setup

Fios ISP <--> Quantum FioS router <---> Unifi managed switch Port to router and port to Unifi Wifi<--> Unifi Wifi (Iot devices)

edit retag flag offensive close merge delete

Comments

Its not that clear what you have set up. You describe wireless and wired capture but you don't say where you have identified the missing packets. A mirror port off the managed switch port that links the AP should have the traffic from wireless to wired side, assuming that is the actual communication profile. If the IOT devices are not sending packets that cross this link, then of course, you won't see them.

One-way traffic flow that is observed can be due to multiple reasons. One is that a mirror port is not set up properly, i.e. it could be set to only do one direction. Could be that there is asymmetric routing. If on wifi, client and AP could be using different modulations and the capture envelope can only pick up one of them. Could be that there is asymmetric routing.

Bob Jones gravatar imageBob Jones ( 2023-11-05 17:05:15 +0000 )edit