<div>
Wireshark may be able to capture the information. Filter for NAT traffic to view activities
</div>


<div>
It is not even better but required to use packet capture and the like on the router. After applying NAT you can not see the original IP addresses anymore when looking at the packets.
</div>


<div>
&gt;&gt; Wireshark may be able to capture the information. Filter for NAT traffic to view activities<br />
Can anyone confirm this?<br />
<br />
&gt;&gt;&nbsp;It is better to see on the router. Do you have console access to your router?<br />
Yes (Arris/Motorola NVG589)<br />
<br />
Qlemo: sorry - I did not understand what you mean
</div>


<div>
Thanks. &nbsp;I've found the router NAT table. &nbsp;It shows sessions for each ip address on my private network.<br />
<br />
I'm running a guest OS in VirtualBox on the laptop configured to use my laptop's wireless nic.<br />
<br />
My suspicion is that the NAT table of my router connected to the internet would have separate sessions for when my laptop (i.e. the host) OS is browsing the internet vs. when the VirtualBox guest OS is browsing the internet, right? &nbsp;How would I differentiate between those sessions in the NAT table?<br />
<a href="https://filedb.experts-exchange.com/incoming/2016/07_w31/1108217/NAT-Table.png" target="_blank" class="file-inline" title="NAT Table (30 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>NAT-Table.png</a>
</div>


NAT-Table.png

<div>
Both machines should have different IP addresses, so that is how you can differ between those.
</div>


<div>
Sorry - I seem to be missing something.<br />
<br />
As I understand it, the NAT table for my router (connected to the internet) shows ip addresses on my private network. &nbsp;A virtual machines on my computer is not on that private network: for a VM to communicate with the internet, VirtualBox needs to pass traffic through my computer's NIC card. &nbsp; That NIC card is assigned only ONE ip address by my router. &nbsp;So that router's NAT table only shows sessions associated with my computer, whether the packets are originating from my (host) computer's browser &nbsp;or the VM's browser.<br />
<br />
In summary, my computer and the VM share one NIC with the same ip address.<br />
<br />
So I'm still trying to figure out:<br />
How, in the NAT table, would I differentiate between internet browsing sessions on my computer vs. on a VM since they are both using the same NIC / ip address? &nbsp;Will any of the columns in the table I posted earlier help me answer this question?
</div>


<div>
Your VM should have an own IP address. Yes, it is using the physical NIC of the host, but virtual it is a different NIC.
</div>


<div>
<div class="content wysiwyg-content">
Just curious: I understand that my router does NAT between my private home network and the internet. &nbsp;How can I see/follow what happens when I enter a website's url into my browser?<br />
<br />
I've got Fiddler installed - will this show me, or do I need wireshark?<br />
I'm trying to see things like how my Internet router tags http packets so that it know how to route return packets to my laptop's nic vs. the virtual nic in a virtual machine running on my laptop which is also using the laptop's nic to get internet access.
</div>
</div>


Just curious: I understand that my router does NAT between my private home network and the internet.  How can I see/follow what happens when I enter a website's url into my browser?

I've got Fiddler installed - will this show me, or do I need wireshark?
I'm trying to see things like how my Internet router tags http packets so that it know how to route return packets to my laptop's nic vs. the virtual nic in a virtual machine running on my laptop which is also using the laptop's nic to get internet access.

How can I see the NAT translation of http packets from/to my laptop's private ip with internet

The Hypertext Transfer Protocol (HTTP) is an application protocol for distributed, collaborative, hypermedia information systems. Hypertext is structured text that uses logical links (hyperlinks) between nodes containing text. HTTP is the protocol to exchange or transfer hypertext. HTTP functions as a request-response protocol in the client-server computing model. HTTP is designed to permit intermediate network elements to improve or enable communications between clients and servers. HTTP is an application layer protocol designed within the framework of the Internet Protocol Suite; it presumes an underlying and reliable transport layer protocol.

HTTP Protocol

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Network analysis is the process of identifying and remediating the processes and systems within a network, including performance, connectivity and security. The process is performed through the use of tools developed for monitoring and analyzing network activity. Network problems that involve finding an optimal way of doing something are studied under the name combinatorial optimization. Examples include network flow, shortest path problem, transport problem, transshipment problem, location problem, matching problem, assignment problem, packing problem, routing problem, Critical Path Analysis and PERT (Program Evaluation & Review Technique).