ips in networking jobs

You can place a sensor in the network to analyze network traffic in one of two ways. The first option is to put a sensor inline with the traffic, which just means that any traffic going through your network is forced to go in one physical or logical port on the sensor. At the sensor, the traffic is analyzed. That is the concept behind intrusion prevention systems (IPS).IDS is detecting the attack (hence the term intrusion detection system) but is not preventing the attack.Sensor Platforms

A dedicated IPS appliance, such as the 4200 series

Software running on the router in versions of IOS that support it

A module in an IOS router, such as the AIM-IPS or NME-IPS modules

A module on an ASA firewall in the form of the AIP module for IPS

A blade that works in a 6500 series multilayer switch

Cisco FirePOWER 8000/7000 series appliances

Virtual Next-Generation IPS (NGIPSv) for VMware

ASA with FirePOWER service

Positive/Negative Terminology

False positive: the sensor generates an alert about traffic and that traffic is not malicious or important as related to the safety of the network

False negative: there is malicious traffic on the network, and for whatever reason the IPS/IDS did not trigger an alert

More Info: ips in networking