CompTIA
N10-005 · Question #563
N10-005 Question #563: Real Exam Question with Answer & Explanation
The correct answer is A: An IPS. An IPS (Intrusion Prevention System) both monitors network traffic and actively blocks or drops malicious traffic in real time, making it the correct choice for active defense.
Question
Which of the following devices should be installed on a network to monitor the presence of and actively defend against attacks?
Options
- AAn IPS
- BA protocol analyzer
- CA traffic shaper
- DAn IDS
Explanation
An IPS (Intrusion Prevention System) both monitors network traffic and actively blocks or drops malicious traffic in real time, making it the correct choice for active defense.
Common mistakes.
- B. A protocol analyzer (packet sniffer) captures and decodes network traffic for analysis but takes no defensive action against attacks.
- C. A traffic shaper manages and prioritizes bandwidth allocation and Quality of Service but has no capability to detect or prevent attacks.
- D. An IDS monitors traffic and generates alerts about suspicious activity but does not actively block or prevent attacks - it is passive.
Concept tested. IPS active inline intrusion prevention vs IDS passive detection
Reference. https://www.cisco.com/c/en/us/products/security/intrusion-prevention-system-ips/index.html
Community Discussion
No community discussion yet for this question.