Overview

Intrusion detection is the ability to detect attacks against a network. Intrusion prevention takes this ability further by stopping attacks against the network. This module will introduce the basic concepts of intrusion prevention and detection. The basic types of inspection engines used in an intrusion detection system (IDS) and an intrusion prevention system (IPS) will also be discussed. The module will conclude with an introduction to the IDS and IPS devices that are part of the Cisco Self-Defending Network solution.

NOTE:

It is required that the student study the commands covered in the chapter using the labs and the Command Reference. Not all required commands are covered in sufficient detail in the text alone. Successful completion of this course requires a thorough knowledge of command syntax and application.