IT 542 IT542 Unit 6 Lab 10 Securing the Network with an Intrusion Detection System (IDS) (Kaplan University)

IT 542 IT542 Unit 6 Lab 10 Securing the Network with an Intrusion Detection System (IDS) (Kaplan University)

BUY HERE⬊

http://mxstudent.com/it-542-it542-unit-6-lab-10-securing-the-network-with-an-intrusion-detection-system-ids-kaplan-university/

Kaplan IT542 Unit 6 Lab 10 Assessment Worksheet

Securing the Network with an Intrusion Detection System (IDS)

Lab Assessment Questions & Answers

1. What is the difference between an IDS and an IPS?

2. Why is it important to perform a network traffic baseline definition analysis?

3. Why is a port scan detected from the same IP on a subnet an alarming alert to receive from your IDS?

4. If the Snort IDS captures the IP packets off the LAN segment for examination, is this an example of promiscuous mode operation? Are these packets saved or logged?

5. What is the difference between a host-based IDS and a network-based IDS?

6. How can you block attackers, who are performing reconnaissance and probing, with Nmap and OpenVAS port scanning and vulnerability assessment scanning tools?

7. Why is it a good idea to have host-based intrusion detection systems enabled on critical servers and workstations?

8. Where should you implement intrusion prevention systems in your IT infrastructure?