EC-Council
EC0-350 · Question #218
EC0-350 Question #218: Real Exam Question with Answer & Explanation
Sign in or unlock EC0-350 to reveal the answer and full explanation for question #218. The question stem and answer options stay visible for context.
Question
When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?
Options
- ADrops the packet and moves on to the next one
- BContinues to evaluate the packet until all rules are checked
- CStops checking rules, sends an alert, and lets the packet continue
- DBlocks the connection with the source IP address in the packet
Unlock EC0-350 to see the answer
You've previewed enough free EC0-350 questions. Unlock EC0-350 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.