A web server is under a denial of service (DoS) attack. The administrator reviews logs and creates an access control list (ACL) to stop the attack. Which of the following technologies could perform these steps automatically in the future?
A web server is under a denial of service (DoS) attack. The administrator reviews logs and creates an access control list (ACL) to stop the attack. Which of the following technologies could perform these steps automatically in the future?
An Intrusion Prevention System (IPS) is capable of not only detecting a denial of service (DoS) attack but also taking automatic action to block the malicious traffic and update access control lists (ACLs) to prevent future attacks. Unlike an Intrusion Detection System (IDS) which only detects and alerts, an IPS actively prevents the attack.
D - detection, hence IPS (P - protection)
The answer is A, Intrusion prevention system (IPS). In this case, the IPS could automatically detect the DoS attack, block the traffic from the source, and create an ACL to prevent future attacks.
r04dB10ck is correct.....Answer should be A