How to implement full packet capture and Netflow at home

I'm trying to learn more about my home network, identifying malicious IPs, looking at packets, in depth threat hunting and looking at protocols and headers, etc....
My questions is, I don't know where to start with trying to capture this and what equipment I need.
At present I have just a simple router/modem that was given to my by my ISP. I guess I need either a tap, or something, or a switch with a SPAN port?
Can someone give me a very basic description of what type of equipment I will need? Nothing too expensive, it's a simple home network. I have a server so can store logs on there.
My Aims
2017: OSCP - COMPLETED
2018: CISSP - COMPLETED
2019: SANS GNFA + GREM
Possible Others: OSCE, MCSA, CCNA, CISM
2017: OSCP - COMPLETED
2018: CISSP - COMPLETED
2019: SANS GNFA + GREM
Possible Others: OSCE, MCSA, CCNA, CISM
0
Comments
Hi Cyberguy,
Yes I have that actually but not looked too much at it so far. The SANS course I was on last week went into a lot of detail around Kibana which I know is contained with SecurityOnion.
My aim was to capture traffic across other parts of the network, not just my PC (where I run SO on a VM).
As an example, I ideally wanted to capture traffic from Netflix, my tablet, my phone, etc... and anything on the network. So I am guessing I need something on the internet boundary to capture that and let traffic out...
I need to decide how much I want to invest in this, both time and effort. It would be a good learning point, to treat my (fairly simple) home network as a test case. To monitor traffic, capture HTTP headers, look at packets etc...
2017: OSCP - COMPLETED
2018: CISSP - COMPLETED
2019: SANS GNFA + GREM
Possible Others: OSCE, MCSA, CCNA, CISM
--
LinkedIn: www.linkedin.com/in/jamesdmurray
Twitter: www.twitter.com/jdmurray
--
LinkedIn: www.linkedin.com/in/jamesdmurray
Twitter: www.twitter.com/jdmurray
Simple. You need to tap before the router.