Security is Everyone's Job
IPS stands for intrusion prevention system, which is a network security tool that monitors and blocks malicious traffic on a network.
IPS hardware can be a physical device or a virtual appliance that is deployed in-line, meaning that it sits in the direct communication path between the source and the destination of the network traffic.
IPS hardware can analyze the traffic in real-time and take automated actions based on predefined rules or signatures to prevent attacks.
Network-based intrusion prevention system (NIPS): This type of IPS is placed at key network locations, such as the perimeter, the data center, or behind the firewall, to scan for threats across the entire network. It can detect and block attacks based on signatures, anomalies, or behavior analysis
Wireless intrusion prevention system (WIPS): This type of IPS is designed to protect wireless networks from unauthorized access, rogue devices, or denial-of-service attacks. It can monitor and control the wireless traffic and enforce security policies
Host-based intrusion prevention system (HIPS): This type of IPS is installed on an endpoint, such as a PC or a server, to protect it from local or remote attacks. It can monitor and filter the inbound and outbound traffic from that machine only. It can also prevent unauthorized changes to the system files or registry
Network behavior analysis (NBA): This type of IPS is focused on detecting abnormal or malicious activity on the network, such as distributed denial-of-service attacks, worms, or botnets. It can use statistical analysis, machine learning, or artificial intelligence to identify patterns or anomalies in the network traffic