IDS vs IPS

An intrusion detection system observes copied traffic and alerts. An intrusion prevention system sits inline on the data path and blocks. Snort and Suricata operate as either; Zeek (formerly Bro) is a flow-analysis engine that is detection-only.

Explained in

Network Security: Firewalls, IDS/IPS, VPN, PKI and SIEM

Your journey to becoming a forensic professional starts here.

Practice with mock tests, learn from structured notes, and get your questions answered by a global forensic community, all in one place.

Continue learning Create Your Account

IDS vs IPS

Explained in

Related terms

Your journey to becoming a forensic professional starts here.