Which two characteristics apply to an Intrusion Prevention System (IPS)? (Choose two.)
A . Does not add delay to the original traffic.
B . Cabled directly inline with the flow of the network traffic.
C . Can drop traffic based on a set of rules.
D . Runs in promiscuous mode.
E . Cannot drop the packet on its own
Answer: BD
Explanation:
+ Position in the network flow: Directly inline with the flow of network traffic and every packet goes through the sensor on its way through the network.
+ Mode: Inline mode
+ The IPS can drop the packet on its own because it is inline. The IPS can also request assistance from another device to block future packets just as the IDS does.
Source: Cisco Official Certification Guide, Table 17-2 IDS Versus IPS, p.461
Leave a Reply