Have you noticed your internet has slowed down and your router is flickering more often than usual? Perhaps unwanted devices have connected to your network—neighbors, forgotten guest devices, or even hackers. But how can you know for sure? How many devices are using your Wi-Fi? right now?
This article will help you not only count connected devices but also identify suspicious activity. We'll cover all available methods—from built-in router features to specialized apps—and explain how to distinguish legitimate devices from rogue ones. Important: Some methods require administrator rights or access to network settings, so prepare your login details for the router control panel in advance.
If you've never accessed your router settings before, don't worry. We'll provide step-by-step instructions, even for beginners, with pictures and explanations of terms. And for experienced users, we've prepared advanced methods using command line and network scanners.
1. Checking via the router's web interface (the most reliable method)
Any modern router keeps a log of connected devices. To view it, you need to log into the admin panel. Here's how:
Find out Your router's IP address. Usually it is
192.168.0.1or192.168.1.1You can check it via the command line (ipconfigon Windows orifconfigon macOS/Linux) - look for the line "Default gateway".Enter this address into your browser's address bar. A login window will open.
Enter your login and password (usually
admin/admin, if you haven't changed it). On some models (TP-Link, ASUS) the data is indicated on the sticker below.
The next steps depend on your router model. Here's where to find a list of devices in popular firmware versions:
- 🔹 TP-Link:
Wireless Mode → Wireless Mode StatisticsorDHCP → DHCP Client List - 🔹 ASUS:
Network map(tab at the top) orLocal Network → DHCP Client List - 🔹 Keenetic:
Devices(icon in the main menu) - 🔹 MikroTik:
Wireless → Registration TableorIP → DHCP Server → Leases
In the table you will see:
- 📱 Device name (if it broadcasts it, for example, "iPhone-12-Pro")
- 🔢 MAC address (a unique identifier that can be used to track the manufacturer)
- 📶 IP address (local on the network)
- ⏱️ Connection time
⚠️ Attention: If the list contains devices with unfamiliar MAC addresses (for example, those starting with 00:1A:2B), but with an IP from your subnet—this could be a sign of a hack. Especially if there are many such addresses or they appear at night.
| Router manufacturer | Path to the list of devices | Additional functions |
|---|---|---|
| TP-Link Archer C6 | Basic → Wireless Statistics |
Shows the data transfer speed for each device |
| ASUS RT-AX88U | Network Map |
Visual network diagram grouped by type (PC, smartphone, IoT) |
| Keenetic Giga | Devices → Connected |
Displays connection history for the last 30 days |
| MikroTik hAP ac² | Wireless → Registration |
Allows you to block a device directly from the table |
2. Mobile apps for Wi-Fi monitoring
If you're too lazy to access your router settings or don't have access, you can use dedicated apps. They scan your network and display all connected devices. The main drawback is that these apps only display devices that are currently active (those transmitting data).
Here are the top 3 proven utilities:
- 📱 Fing (Android/iOS) - shows IP, MAC, device manufacturer, and even network vulnerabilities. There is a function
Pingto check availability. - 📱 NetScan (Android) — Scans the network in 10 seconds and saves scan history. Can detect device type (printer, TV, camera).
- 📱 WiFi Guard (iOS) — Sends notifications when new devices appear on the network. Supports whitelisting of trusted MAC addresses.
How to use (using example) Fing):
- Connect to your Wi-Fi network.
- Launch the application and click "Scan".
- After 20-30 seconds, a list of devices with details will appear.
- Click on any device to see its MAC, manufacturer, and connection history.
⚠️ Attention: Apps may not see devices that are in sleep mode or have a static IP outside the DHCP range. For a complete picture, combine this method with checking through the router.
3. Command line: for advanced users
If you prefer to work without graphical interfaces, you can get a list of devices on the network via command line (Windows) or terminal (macOS/Linux) This method requires basic knowledge of network protocols, but provides the most accurate data.
For Windows:
arp -a
This command will display the ARP (Address Resolution Protocol) table, which lists all IP addresses and their corresponding MAC addresses on the local network. To filter only active devices, first ping the entire range:
for /L %i in (1,1,254) do ping -n 1 192.168.1.%i
Then run it again arp -a — now the list will only contain hosts that responded.
For macOS/Linux:
nmap -sn 192.168.1.0/24
This command will scan the entire subnet and list devices with their MAC address, manufacturer, and status (online/offline). Install nmap it is possible through brew install nmap (macOS) or sudo apt install nmap (Ubuntu/Debian).
What to do if arp -a shows few devices?
If there are few entries in the ARP table after a ping scan, check:
1. The IP range of your network (it may not be 192.168.1.x, but for example 192.168.0.x or 10.0.0.x).
2. Firewall settings - it may block ICMP packets (ping).
3. On some routers, the ping response function for the local network is disabled (look for the "Respond to Ping on LAN" setting in the admin panel).
4. Analyzing traffic with Wireshark (advanced method)
Wireshark — is a professional network traffic analyzer that allows you to see all data packets passing through your network, including hidden connectionsThis method is suitable for identifying "invisible" devices that are not visible in standard tools.
How to use:
- Download and install Wireshark from the official website (there are versions for Windows, macOS, Linux).
- Select network interface (Wi-Fi adapter).
- Start packet capture (Start button).
- Enter in the filter
wlan.addr == [your_router_MAC]to see only traffic through your router. - Analyze your traffic sources - each unique MAC address corresponds to a separate device.
Advantages of the method:
- 🔍 Sees All devices, even those that do not respond to ping.
- 📊 Shows traffic types (HTTP, DNS, ARP, etc.), which helps to identify suspicious activity.
- 🕒 You can save the log and analyze it later.
⚠️ Attention: Wireshark Requires administrator privileges and may create a high CPU load during long-term capture. Do not use it on low-end PCs or laptops without cooling.
5. Checking through the provider (if the router is rented)
If your router is provided by your internet service provider (e.g. Rostelecom, Beeline, MTS), some functions may be blocked. In this case, you can:
- 📞 Call support and ask them to check the number of connected devices (sometimes operators see this information in their system).
- 🌐 Log in personal account on the provider's website - some (for example, Dom.ru) show connection statistics.
- 📄 Check your contract — sometimes it specifies a device limit (this applies to tariffs with restrictions).
Example of a path in your personal account Rostelecom:
- Log in to the website
lk.rt.ru. - Go to "My Services" → "Internet".
- Find the "Devices" or "Connection Statistics" tab.
Please check your router model (written on the sticker)
Prepare your login details for your personal account
Record the time you noticed suspicious activity.
Check if you have changed your Wi-Fi password recently-->
6. Identifying "foreign" devices: what should alert you
Simply counting the number of devices isn't enough—you need to understand whether all of them are legitimate. Here are signs that your network may be unauthorized connection:
- 🤖 Unknown manufacturers in the list of MAC addresses (for example,
Shenzhen Bilian— is a Chinese manufacturer of IoT devices, often counterfeited). - ⏰ Connections at unusual times (at night, when everyone is sleeping).
- 📉 A sharp drop in speed for no apparent reason.
- 🔄 Frequent MAC address changes on one device (a sign of spoofing).
- 🌍 IP geolocation (if the router shows that the device is "in another country").
What to do if you find a suspicious device:
- Try disabling it through the router panel (function "Block" or "Disconnect").
- Change your Wi-Fi password to a more complex one (at least 12 characters with numbers and special characters).
- Enable MAC address filtering (allow connections only to known devices).
- Update your router firmware—many vulnerabilities exploit outdated versions.
Example of a "suspicious" MAC address: 00:1E:42:XX:XX:XX (manufacturer - Microsoft, but you don't have any Microsoft devices) or B8:27:EB:XX:XX:XX (manufacturer - Raspberry Pi, and you don’t have such a device).
7. Automated Monitoring: How to Track Connections 24/7
Manual checking is tedious, so you can set up automatic notifications about new devices. Here are a few ways:
- 📲 "WiFi Guard" application (iOS) - Sends push notifications when new MAC addresses appear.
- 🖥️ Python script using the library
scapyto scan the network and send email alerts. - 🌐 Cloud services like GlassWire (free plan available) — monitors traffic and connections in real time.
- 📡 The "Notifications" function in the router (have at ASUS, Keenetic) - sends an email when a new device is connected.
Example script for automatic scanning (requires Python 3 and administrator rights):
import osimport smtplib
from scapy.all import ARP, Ether, srp
def scan_network(ip_range):
arp = ARP(pdst=ip_range)
ether = Ether(dst="ff:ff:ff:ff:ff:ff")
packet = ether/arp
result = srp(packet, timeout=3, verbose=0)[0]
devices = []
for sent, received in result:
devices.append({'ip': received.psrc, 'mac': received.hwsrc})
return devices
if __name__ == "__main__":
ip_range = "192.168.1.0/24"
known_devices = ["00:11:22:33:44:55", "AA:BB:CC:DD:EE:FF"] # Your trusted MACs
current_devices = scan_network(ip_range)
new_devices = [d for d in current_devices if d['mac'] not in known_devices]
if new_devices:
# Send notification (replace with your details)
server = smtplib.SMTP('smtp.gmail.com', 587)
server.starttls()
server.login("your_email@gmail.com", "your_password")
message = "New devices detected: " + str(new_devices)
server.sendmail("your_email@gmail.com", "your_email@gmail.com", message)
server.quit()
This script scans the network every 5 minutes (can be configured via cron in Linux or Task Scheduler in Windows) and sends an email if new MAC addresses appear.
FAQ: Frequently asked questions about connected devices
Is it possible to find out which websites connected devices visit?
Yes, but for this you need:
- Tune DNS redirection to the server with logs (for example, Pi-hole).
- Use a router with this feature
Traffic Monitor(ASUS, Netgear). - Install Wireshark and analyze HTTP traffic (does not work with HTTPS without additional settings).
⚠️ Please note: Intercepting traffic may violate privacy laws if you are not the owner of the devices.
Why does the router show more devices than it actually has?
This may be due to:
- 📱 Cached DHCP entries (the router remembers devices that have been disconnected for a long time).
- 🔄 Double connections (one device can have multiple sessions, for example, via Wi-Fi and via cable).
- 🤖 IoT devices (smart bulbs and cameras are often connected separately from the main gadget).
- 📡 Neighborhood networks with the same SSID (if you have a weak signal, devices may "jump" between networks).
To clear the list, reboot the router or manually delete old entries in the section DHCP Leases.
How to block someone else's device permanently?
The most reliable way is MAC address filtering:
- Go to the router panel (see section 1).
- Find the section
Wireless MAC FilterorAccess Control. - Add MAC addresses of trusted devices to the whitelist.
- Set a rule
Denyfor all other MACs.
⚠️ Please note: experienced hackers can spoof the MAC address (MAC-spoofing), so combine this method with a strong password and disabling WPS.
Is it possible to find out the number of devices without access to the router?
Yes, but with restrictions:
- 📱 Mobile applications (see section 2) will show only active devices.
- 🖥️ Command line (section 3) - also only active hosts.
- 📊 Traffic analyzers like Wireshark — the most complete method, but difficult to set up.
Without access to the router you you won't see:
- Devices in sleep mode.
- Devices with disabled ping response.
- Cable connections (if you are on Wi-Fi).
How can I check if my neighbor is stealing my Wi-Fi?
Signs of traffic theft:
- 📉 The speed drops at certain times (for example, in the evening when the neighbors are at home).
- 🔄 Unfamiliar MAC addresses with manufacturers appear in the device list
Xiaomi,TP-Link(popular for sharing). - 📡 Your Wi-Fi signal has become weaker (this may mean someone is using a repeater to boost your signal).
What to do:
- Change your password to
WPA3-Personal(if the router supports it). - Turn it off
WPS- This is a vulnerable protocol. - Reduce the signal transmission power (setting
Tx Power), so that the network is not visible outside your apartment.