Which IPS detection method can you use to detect attacks that based on the attackers IP addresses?

Which IPS detection method can you use to detect attacks that based on the attackers IP addresses?
A. Policy-based
B. Anomaly-based
C. Reputation-based
D. Signature-based

cisco-exams

3 thoughts on “Which IPS detection method can you use to detect attacks that based on the attackers IP addresses?

  1. Reputation-based IPS
    collects input from systems all over the planet that are participating in global correlation; so
    what other sensors have learned collectively, your local sensor can use locally. Reputationbased
    IPS/IDS may include descriptors such as blocks of IP addresses, URLs, DNS domains,
    and so on as indicators of the sources for these attacks

    From CCNA Sec 210-260

  2. In my opinion the correct answer is C ( Reputation-based). Because exist black list IP a database of that IP reputation.

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.