Network Intrusion Detection and Prevention – CompTIA Security+ SY0-501 – 2.1

Network Intrusion Detection and Prevention – CompTIA Security+ SY0-501 – 2.1


5 Replies to “Network Intrusion Detection and Prevention – CompTIA Security+ SY0-501 – 2.1”

  1. Thank you for the helpful information. Do you have any recommendations on how to identify false negatives should a malware scan not detect it?

  2. One question. Why one would prefer an IDS over an IPS if the IDS is more risky (i.e., it only alerts you)?

  3. quick question, could you have both an IPS and IDS? if the IDS is wired in Passive Monitoring and the IPS is wired in Inline Monitoring? Could you set different signatures on the IDS to have it look for different types of Malware, then notify you (since its primary job is to alert)?

    Or would you just have it all on the IPS?

  4. In your diagram at 2:33 – Is it really necessary to have both a firewall and an IPS? It seems like a lot of their functions overlap. It seems like an IPS is just a more proactive firewall. Am I incorrect to think this?

    P.S. Thanks for all of your content! Your class notes are so detailed, I am glad I broke down and bought them, my notes were no where near as detailed when I was taking them.

Leave a Reply

Your email address will not be published. Required fields are marked *