ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CCSP All Questions

View all questions & answers for the CCSP exam
Go to Exam

Exam CCSP topic 1 question 369 discussion

Actual exam question from ISC's CCSP
Question #: 369
Topic #: 1
[All CCSP Questions]

A variety of security systems can be integrated within a network--some that just monitor for threats and issue alerts, and others that take action based on signatures, behavior, and other types of rules to actively stop potential threats.
Which of the following types of technologies is best described here?

  • A. IDS
  • B. IPS
  • C. Proxy
  • D. Firewall
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
An intrusion prevention system (IPS) can inspect traffic and detect any suspicious traffic based on a variety of factors, but it can also actively block such traffic.
Although an IDS can detect the same types of suspicious traffic as an IPS, it is only design to alert, not to block. A firewall is only concerned with IP addresses, ports, and protocols; it cannot be used for the signature-based detection of traffic. A proxy can limit or direct traffic based on more extensive factors than a network firewall can, but it's not capable of using the same signature detection rules as an IPS.
by kjjcraigskel at Oct. 8, 2020, 5:50 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
banno
Highly Voted 1 year, 6 months ago
IDS has a only detection capabilities while IPS can response to detected events. As it's also required response then answer is IPS.
upvoted 6 times
...
budjones
Most Recent 8 months ago
The question: There are some that don't block and others that do block. Which of the following types of technologies is best described here? Ok there's the don't block IDS, and the do block IPS. Which is best described here? Well it's IDS. More words are use to described IDS than IPS.
upvoted 1 times
...
cmarcos97
1 year ago
This question might need to be verified. There are legitimately 2 answers. IDS and IPS
upvoted 1 times
...
VSN80
1 year, 4 months ago
yes - both IPS and IDS. Question related to second statement. Very tricky question
upvoted 1 times
...
NobleGiantz
1 year, 7 months ago
B is correct: "... actively stop potential threats ..."
upvoted 1 times
...
kjjcraigskel
1 year, 11 months ago
Both IDS and IPS were described in the question. Had to assume the latter was what the question was referring to.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago