Ethical Hacking Unit 5 Lab10

.pdf

School

Colorado Technical University *

*We aren’t endorsed by this school

Course

CSS-280

Subject

Information Systems

Date

Jan 9, 2024

Type

pdf

Pages

2

Uploaded by ChefLyrebird4064

Report
Lab #10 - Assessment Worksheet Securing the Network with an Intrusion Detection System (IDS) Course Name and Number: ________________________________________________________________ Student Name: ________________________________________________________________ Instructor Name: ________________________________________________________________ Lab Due Date: ________________________________________________________________ Lab Assessment Questions & Answers 1. What is the difference between an IDS and an IPS? 2. Why is it important to perform a network traffic baseline definition analysis? 3. Why is a port scan detected from the same IP on a subnet an alarming alert to receive from your IDS? 4. If the Snort IDS captures the IP packets off the LAN segment for examination, is this an example of promiscuous mode operation? Are these packets saved or logged? 5. What is the difference between a host-based IDS and a network-based IDS? 6. How can you block attackers, who are performing reconnaissance and probing, with Nmap and Nessus port scanning and vulnerability assessment scanning tools?
7. Why is it a good idea to have host-based intrusion detection systems enabled on critical servers and workstations? 8. Where should you implement intrusion prevention systems in your IT infrastructure?
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help