A sudden drop in internet speed is often the first warning sign that someone is using your wireless network. When you're watching 4K video and the image constantly buffers, it's natural to want to know who's hogging your bandwidth. Checking the list of connected devices is a basic home network administration skill that every router owner should master.
There are several effective methods for monitoring activity on your network, from using your router's built-in features to dedicated apps. Access control This allows you to see not only the names of your devices but also their IP addresses and MAC addresses, which are unique identifiers for network cards. Ignoring this step can lead to the theft of confidential data or the use of your network connection for illegal activities.
In this article, we'll take a detailed look at how to conduct a network audit, the best tools for the job, and how to quickly block intruders. You'll learn how to distinguish system devices from guest devices and understand why a default Wi-Fi password may not be secure enough.
Using the router's web interface to audit the network
The most reliable and accurate way to find out who's connected to your Wi-Fi is to log in to your router's control panel. This method doesn't require installing any additional software and provides the most comprehensive data in real time. You'll need any browser and access to the local network; that is, the device you're logging in from must be connected to the router via cable or Wi-Fi.
First, you need to find out the gateway's IP address. On Windows computers, this can be done via the command line by entering the command ipconfigFind the line "Default Gateway", this is usually an address of the form 192.168.0.1 or 192.168.1.1By entering this address into your browser's address bar, you will be taken to the authorization page.
⚠️ Warning: If you changed the default router password, use your own. If the username and password are still the default (often admin/admin), we strongly recommend changing them immediately after checking, as this is a critical vulnerability.
Interfaces vary significantly between manufacturers, but the logic for finding the client list is the same. Look for tabs labeled "Wireless," "Status," or "Client List." This is where you'll find a complete picture of the current network status.
Inside the interface, you will see a table where each device is assigned an IP address. MAC address — This is the physical address hardcoded into the device's network card and does not change when reconnecting. This is your primary reference point for identification.
Analyzing the table of connected devices
Once you access the list, it's important to interpret the data correctly. Routers often display device names automatically if they're transmitted via DHCP, but sometimes you'll see just a string of numbers or generic names like "Android" or "Windows PC."
Let's look at a typical client table structure using common router models as an example. Data may be updated with a delay of several seconds, so if in doubt, refresh the page.
| Parameter | Description | Importance for verification |
|---|---|---|
| Client Name | Device name (Hostname) | Average. Users frequently change their names, or their names may be uninformative. |
| IP Address | Local IP address | Low. Dynamically changes with each reconnection. |
| MAC Address | Physical network address | High. A unique identifier that cannot be forged without root access. |
| Type | Connection type (Wireless/LAN) | High. Allows you to determine whether the device is connected via Wi-Fi or cable. |
To identify the intruder, methodically go through your home and turn off Wi-Fi on all your devices: smartphones, TVs, smart speakers. Only devices connected via cable should remain in the router's list. If you see active wireless connections at this point, someone is using your internet.
☑️ Checking the client list
Pay attention to the number of active connections. If you have a smart home with dozens of sensors, light bulbs, and outlets, it's normal for them to appear on the list. However, smartphones from guests who have already left but have maintained automatic connections may still be listed and consume resources.
Mobile applications for network monitoring
If logging into the web interface seems complicated or inconvenient from your phone, you can use specialized apps. They scan the network and display information in a more user-friendly format, often featuring device manufacturer logos.
One of the most popular tools is the application FingAvailable for Android and iOS, it instantly displays all devices on the network. The app doesn't just show IP addresses, but also attempts to identify the device model, operating system, and even the username.
Other useful utilities include Network Scanner or Wi-Fi AnalyzerThey provide technical information about the signal, channel, and airtime usage, which is also useful for diagnosing speed issues. However, for checking "who's using the Wi-Fi," the client scanning functionality is key.
It's important to understand that mobile apps operate at the network level and see the same things as the router. However, they can't block a device directly via Wi-Fi unless the router itself supports integration with the app (as some models do). TP-Link or Keenetic with their proprietary cloud services).
PC software (Windows and macOS)
For more in-depth analysis, especially in office networks or with a large number of devices, a computer is more convenient. There are many utilities available for Windows, but built-in tools or lightweight scanners can also suffice.
A simple command in the command line arp -a will display the ARP table, which associates IP addresses with the MAC addresses of devices with which your computer has recently communicated. This isn't a complete list of all router clients, but it's a good way to see active network neighbors.
arp -a
To get a complete picture on a PC, a program is often used Advanced IP ScannerIt's free, requires no installation, and scans the entire address range in just a few seconds. The program displays the network card manufacturer, which helps identify the device (e.g., Apple, Samsung, Intel).
On macOS, the equivalent utility can be LanScan Or the built-in "Disk Utility" -> "Network Utility." These tools allow you to see not only connected devices but also open ports, which is useful for security assessments.
⚠️ Warning: Your antivirus or firewall may block network scanning, considering it suspicious activity. You can temporarily reduce your protection during the scan, but be sure to turn it back on.
How to block an uninvited user
Once you've identified a device that doesn't belong to you, you need to block it. Simply changing your Wi-Fi password is a drastic measure that will force you to reconnect all your devices. A more targeted method is MAC address filtering.
White List — This mode allows the router to connect only to devices whose MAC addresses are listed. All others, even with the password, will be unable to connect. This is the most reliable security method.
An alternative option is - Black ListYou add the intruder's MAC address to the blacklist, and the router disconnects the device. The downside is that a savvy user can change the MAC address on their device (clone the address of your printer or phone) and regain access.
Can a hacker bypass MAC address blocking?
Yes, if they have physical access to the network or are already embedded in the system. This process is called MAC address spoofing. However, for typical "neighborly Wi-Fi theft," this isn't usually done, as it requires specialized knowledge and software.
To set up filtering, find the "Wireless MAC Filtering" section in the router menu. Enable the feature, select "Allow" or "Deny" mode, and add the appropriate addresses. Be sure to click "Save" or "Apply," otherwise the settings will not be applied.
Recommendations for strengthening Wi-Fi security
Constantly checking your connection list is good, but it's better to create conditions where outsiders simply can't connect. Basic network security hygiene will help prevent future problems.
First of all, use an encryption protocol WPA2-PSK or WPA3Older WEP and WPA protocols are easily cracked by automated scripts in minutes. The password must be complex: at least 12 characters, including uppercase and lowercase letters, numbers, and special characters.
- 🔒 Disable the WPS function. It allows you to connect using a PIN code, which is very easy to brute-force. Even if the WPS button is lit on your router, it's best to disable it in the settings.
- 📡 Hide the network name (SSID). If the network isn't visible in the list of available networks, passersby won't try to connect to it. You'll have to enter the network name manually the first time you connect new devices.
- 🔄 Update your router firmware regularly. Manufacturers patch vulnerabilities that could allow attackers to access the admin panel.
It's also worth paying attention to your guest network. If you frequently have friends over, create a separate guest Wi-Fi zone for them with limited speed and isolation from your main local network. This will allow guests to use the internet but won't allow them to access your files and printers.
Frequently Asked Questions (FAQ)
Does the number of connected devices affect internet speed?
Yes, directly. The Wi-Fi channel is shared among all active users. If someone is downloading large files or watching high-quality videos, other devices will have less bandwidth, resulting in lag and slow download speeds.
Can my neighbor see my files if he is connected to Wi-Fi?
If you don't have Client Isolation configured and have weak passwords for Windows shared folders, it's theoretically possible. However, modern routers often isolate wireless clients from each other by default, preventing direct file access.
What should I do if I can't access my router settings?
Try resetting the router to factory settings by holding the Reset button on the device for 10-15 seconds. Then, use the username and password found on the sticker on the bottom of the device. Keep in mind that this will reset all your internet settings.
Is it true that passwords for banking apps can be stolen via Wi-Fi?
If your network is protected by a modern protocol (WPA2/3) and you don't visit suspicious websites, your banking app traffic is encrypted. However, on an open or compromised network, a hacker may try to redirect you to a phishing site, so caution is advised.