In the age of ubiquitous wireless technology, internet access has become a basic necessity, yet few people consider who exactly is sharing this resource with you. A situation where connection speeds suddenly drop and pages take longer to load often indicates that unauthorized user connected to your network. Understanding how to view devices connected to WiFi is the first step to securing your digital perimeter and optimizing traffic.
Modern routers provide network administrators with powerful tools for monitoring activity, but the interface for these settings may vary depending on the manufacturer and firmware version. You don't need to be a network engineer to navigate the client list; you just need to know where to look for the necessary parameters and how to interpret the displayed information. In this article, we'll detail the workflows for equipment from various brands and also explore software diagnostic methods.
Before moving on to specific instructions, it's important to understand the scope of the potential threat. An attacker who gains access to your router can not only use the internet for free, but also intercept transmitted data, inject malware, or use your IP address for illegal activities. Changing your WiFi network password is a mandatory step if you find an unfamiliar device in the client list. Regularly checking your connection list will help you keep your home network tidy.
Using the router's web interface to check clients
The most reliable and accurate way to find out who's using your WiFi is to access your router's administrative panel directly. The router acts as a gateway and DHCP server, so it has complete and up-to-date information about all active connections. To log in, you'll need the gateway IP address (usually 192.168.0.1 or 192.168.1.1) and the administrator credentials, which are often found on a sticker on the bottom of the device.
After logging into the management system, you need to find the section responsible for the wireless network or connection status. Depending on the model and manufacturer, this section may have different names: "Wireless Status," "Client List," "DHCP Server List," or "Client List." This is where the following information is displayed: MAC addresses, IP addresses, and sometimes the names of devices that are currently accessing the network.
⚠️ Note: Router interfaces are frequently updated. If you can't find the menu item with the specified name, look for sections labeled "Status," "Monitoring," or "Wireless." The exact location of the settings may depend on your device's firmware version.
It's important to be able to distinguish your devices from others. The list often displays not only the device name but also the connection type (wired or wireless). If you see a device named "Unknown" or a strange set of characters, this is cause for concern. For more accurate identification, you can temporarily disable WiFi on your devices and watch the device disappear from the list in the admin panel.
Checking connections on TP-Link and Keenetic routers
TP-Link routers, especially those with the Tether interface or the new green skin, have a fairly logical menu structure. To see the client list, go to the section Basic (Basic settings) and select the tab Wireless (Wireless mode). A table of connected stations will be displayed, along with their MAC addresses and current data transfer status.
Keenetic devices, popular for their stability and flexibility, offer even more detailed monitoring. In the web configurator, go to the "Client List" tab (usually the icon with a monitor or globe in the top menu). Here, the system not only displays a list but also allows you to assign names to devices, block their access with one click, or limit their speed.
Keenetic users also have access to the "My Networks and WiFi" feature, which displays a graph of each client's activity. This helps identify users downloading torrents or watching 4K videos in the background, even if they are trusted devices. Access management is extremely convenient: simply click the lock icon next to the client's name to terminate the connection.
- 📱 On TP-Link routers, the list is often located at: Wireless -> Wireless Statistics.
- 🔒 In Keenetic, blocking is done by clicking the "Deny access" icon in the client list.
- 📶 Traffic statistics help you understand which device is consuming the most network resources.
- 🏠 Device names in Keenetic can be edited directly in the interface for convenience.
Network analysis on ASUS, D-Link, and Xiaomi equipment
ASUS routers with ASUSWRT firmware provide a very visual network map. The main page of the web interface often displays a visualization of connected clients. For a complete list, go to the section Network Map (Network Map) and click on the clients icon. Here you can see not only current connections but also activity history and device type (mobile phone, PC, or gaming console).
D-Link devices, especially the DIR series, have a classic menu where the client list is located in the section Status -> Active ClientsThe interface may look a bit outdated, but the functionality remains the same: displaying MAC and IP addresses. Newer models with D-Link Cloud management may have a different interface, offering monitoring via a mobile app.
Xiaomi and Redmi routers, primarily managed via the Mi Wi-Fi app on a smartphone, also allow you to view a list of connections. The app's main screen displays the number of connected devices. Tapping this number displays a detailed list with the option to limit speed or block a user. Xiaomi's web interface is also available at 192.168.31.1.
What if the device has no name?
Devices are often listed as "android-xyz" or simply by their MAC address. In this case, compare the first six characters of the MAC address (OUI) with an online manufacturer table to determine the device brand.
Regardless of brand, the principle remains the same: search for the section with the wireless network status or DHCP clients. If you can't find the information you need in the menu, try searching through your router settings, if the manufacturer offers such a feature. On modern models, simply entering "Client" or "List" in the interface search bar is often sufficient.
Mobile apps for monitoring WiFi networks
If accessing the router's web interface is impossible or seems too complicated, specialized mobile apps can help. They scan the local network and identify all active devices, providing information about their manufacturers and open ports. One of the most popular and functional tools is the app Fing, available for Android and iOS.
Application WiFi Analyzer or Network Scanner They also do an excellent job of detecting connected devices. After running a scan, the program displays a list of all devices on the network, their IP addresses, MAC addresses, and network card manufacturers. This allows you to quickly identify "redundant" connections without having to log into the router.
However, it's important to remember that mobile apps see the network just like any other computer. They can't block a device at the router level (unless the router itself supports app integration), but they only inform you of the presence of "guests." Taking action will still require logging into the router settings.
- 📲 Fing is the market leader and determines the device type and operating system.
- 🔍 Network Scanner — simple interface and fast ping of all addresses.
- 📶 WiFi Analyzer - more channel-focused, but has a client list feature.
- ⚡ Network scanners are faster than manually searching through IP addresses.
Diagnostics via the Windows command line and macOS terminal
For users who prefer console commands or don't have access to the router's graphical interface, there are built-in operating system tools. In Windows, you can use the command arp -a, which displays the ARP (Address Resolution Protocol) table. This table contains mappings between IP addresses and physical MAC addresses of devices with which your computer has recently communicated.
To get the most complete list, it is recommended to ping the entire address range of your subnet before entering the command. For example, if your IP is 192.168.1.5, you can run the command for /L %i in (1,1,254) do ping -n 1 -w 10 192.168.1.%i in the command line, and then enter again arp -aThis will force the computer to query all possible addresses on the network.
The principle is similar on macOS and Linux, but the command syntax differs. The Mac terminal also uses the command arp -a to view the cache. For a more in-depth analysis, you can use the utility nmap, which is a powerful network scanning tool that allows you to not only find devices, but also determine open ports and service versions.
C:\Users\User> arp -a
Interface: 192.168.1.5 --- 0x3
Internet Address Physical Address Type
192.168.1.1 aa-bb-cc-11-22-33 dynamic
192.168.1.15 11-22-33-44-55-66 dynamic
192.168.1.20 66-55-44-33-22-11 dynamic
Analyzing the command output arp This requires careful attention. You'll see many entries, some of which may be dynamic, while others may be static. Compare the resulting MAC addresses with those of your known devices. If you see an address that doesn't match any of your devices, this is a warning sign.
Table of device identification by MAC address
Understanding the MAC address structure helps with identification. The first three bytes (6 characters) are called the OUI (Organizationally Unique Identifier) and identify the network equipment manufacturer. Knowing the manufacturer makes it easier to determine whether the device is an Apple smartphone, an Intel network card, or a Xiaomi chip.
| MAC Prefix (OUI) | Manufacturer | Probable device | Connection type |
|---|---|---|---|
| A4:5E:60 | Apple, Inc. | iPhone, iPad, Mac | WiFi / Ethernet |
| 00:1A:2B | TP-Link Corporation | Router, access point, IP camera | WiFi |
| 3C:5A:B4 | Google, Inc. | Chromecast, Android TV | WiFi |
| 08:00:27 | PCS Systemtechnik GmbH | Virtual Machine (VirtualBox) | Virtual |
| 84:D6:D0 | Intel Corporate | Laptop, PC with Intel WiFi module | WiFi / Ethernet |
Using online MAC address lookup services (MAC Vendor Lookup), you can decode the prefix of any unknown device. This is especially useful when the device name is hidden or displayed incorrectly in the router's client list. Enter the first six characters of the MAC address into the search engine, and you'll find the manufacturer.
☑️ Network security check
Protecting and hiding your network from outsiders
Once you've detected an intruder or simply want to prevent future intrusions, you need to take a number of steps to strengthen your security. First, change your WiFi network password to a complex combination. It's also crucial to change the password for accessing your router settings, as the default admin/admin passwords are known to hackers.
Enable MAC Filtering. This feature allows you to create a "whitelist" of devices that are allowed to connect. Even if someone learns your WiFi password, they won't be able to connect because their MAC address won't be added to the router's whitelist. This is one of the most reliable security measures, although it does require manual configuration for each new device.
⚠️ Note: MAC address filtering is effective, but it doesn't protect against security professionals who can spoof the MAC address of an authorized device. Use this feature in conjunction with other security measures.
Don't forget to disable WPS (Wi-Fi Protected Setup), which allows you to connect by pressing a button or entering a PIN. This protocol has known vulnerabilities that allow attackers to easily brute-force the password. It's also recommended to hide the network name (SSID) so it doesn't appear in your neighbors' list of available networks, although this will add inconvenience when connecting new devices.
Regularly updating your router firmware is another important security aspect. Manufacturers frequently release patches to close security holes. Check your firmware version in the admin panel and install any updates. This will ensure the latest encryption and data protection algorithms are in place.
Frequently Asked Questions (FAQ)
Can my neighbor steal my internet if I changed my password?
If you've changed your password to a strong one and are using modern encryption (WPA2/WPA3), then it's impossible to steal your internet connection. However, if you have WPS enabled or guests know the password from your previous configuration, access is possible. The password could also have been saved on the devices of previous guests.
Why do I see more connections in the list of devices than I have gadgets?
This can happen for several reasons: some devices (smartphones, laptops) create two connections—one for 2.4 GHz and one for 5 GHz—which appear as two separate clients. The list may also include virtual adapters, printers, smart plugs, or devices that are in sleep mode but still connected to the router.
How to permanently block someone else's device?
The most reliable method is to use the "Blacklist" feature in your router settings and add the intruder's MAC address. Afterwards, be sure to change your WiFi password, as the old one may have been compromised. Without changing the password, the block may be temporary if the intruder tries to connect again.
Does my ISP see which devices are connected to my router?
The ISP sees all traffic passing through your channel and can see the MAC address of your router (WAN port). However, the ISP typically doesn't see the MAC addresses of internal devices (phones, laptops), as they are hidden behind your router's NAT (Network Address Translation). To the ISP, all devices appear as a single client.
Is it safe to use apps to find your neighbor's WiFi?
Using such apps to analyze available networks is legal, but attempting to connect to someone else's network without permission or hacking their password is illegal. Furthermore, by downloading questionable "hacking" apps, you risk infecting your smartphone with viruses or having your data stolen.