What is an effective deployment of IPS and IDS appliances in a corporate network?

IT Questions BankCategory: CCNA SecurityWhat is an effective deployment of IPS and IDS appliances in a corporate network?

What is an effective deployment of IPS and IDS appliances in a corporate network?

  • Place an IPS between the border router and the internal network and an IDS in the same LAN.
  • Place an IPS between the border router and the internal network and an IDS between the border router and the ISP.
  • Place both an IPS and an IDS inside the DMZ network.
  • Place an IDS between the border router and the internal network and an IPS inside the DMZ network.

Explanation: An IPS is deployed in inline mode whereas an IDS is deployed in promiscuous mode. An effective deployment of IPS/IDS is to place an IPS right behind the border router to filter the traffic inbound to and outbound from the corporate internal network. IPS and IDS technologies can complement each other. Although an IDS will not stop an intrusion attack immediately, it can be used to validate IPS operation because the IDS can be configured for deeper packet inspection offline. This allows the IPS to focus on fewer but more critical traffic patterns inline. Placing IPS and IDS in the DMZ network will not protect the corporate internal network.

Exam with this question: CCNA Security Certification Practice Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments