16.1. Securing Networks with IDS and IPS

Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) sensors protect your network from malicious traffic. The two systems are deployed differently and scan for malicious traffic in different ways. Each system has strengths and weaknesses when deployed separately, but when used together, IDS and IPS can provide a much richer and deeper level of security. The sections that follow show you each system individually, then bring them together and show you how they complement one another.

16.1.1. Basic Functions of the Intrusion Detection System (IDS)

IDS is typically characterized as a passive listening device. This label is given to these systems because traffic does not have to pass through ...

Get Cisco® Network Professional's: Advanced Internetworking Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.