Chapter 8. NIPS Components
Network-based Intrusion Prevention products use sensors to analyze network traffic at numerous locations throughout your network. These sensors are deployed in various form factors, such as the following:
Standalone appliance sensors
Blade-based sensors
Intrusion Prevention System (IPS) software integrated into the operating system (OS) on infrastructure devices
Regardless of the form factor of your sensors, your sensors must receive the network traffic that needs to be analyzed. Capturing network traffic varies depending on whether you are using inline mode or promiscuous mode. After your sensors have captured network traffic, their analysis of the traffic falls into the following categories based on the way that the signatures ...
Get Intrusion Prevention Fundamentals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
