Section 3: Cisco IOS IPS

It is common for networks to be protected by a firewall, a device that limits communication from an untrusted network to the trusted network. Firewalls make decisions whether to allow or disallow traffic from one network to another based on the rules configured in the firewall rule base or security policy.

This rule base consists of firewall rules that normally look at the source IP address, destination IP address, and destination port to make its decision.

Intrusion prevention is a technology based on intrusion detection. Intrusion detection was the initial technology that detected and reported on network-level attacks. Intrusion prevention systems (IPS) offer a more proactive approach and include advanced blocking techniques ...

Get CCSP SNRS Quick Reference now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.