Which open source network monitoring technology performs real-time traffic analysis and generates alerts when threats are detected on IP networks?
- Snort IPS
- RSPAN
- SPAN
- IOS IPS
Explanation: Snort is an open source network IPS that performs real-time traffic analysis and generates alerts when threats are detected on IP networks. The legacy Cisco IOS IPS allowed a Cisco ISR router to be enabled as an IPS sensor to scan packets and sessions to match any of the Cisco IOS IPS signatures. Port mirroring allows a switch to copy frames that are received on one or more ports to a Switch Port Analyzer (SPAN) that is connected to an analysis device. Remote SPAN (RSPAN) is a variation of SPAN that enables a network administrator to use the flexibility of VLANs to monitor traffic on remote switches.
Exam with this question: Module 11: Quiz – IPS Technologies Network Security
Please login or Register to submit your answer