Different Types of Intrusion 

Prevention System

The intrusion prevention system is identify the malicious activity, log information about system or network, and report activity. In particularly, IPS can take such action as sending an alarm, dropping malicious packets, resetting the connection or blocking the traffic from the offending IP address. An IPS can also correct cyclic redundancy check (CRC) errors, prevent TCP sequencing issues, and clean up unwanted transport and network layer options.

There are four different types of IPS

Network Based Intrusion Prevention System (NIPS)

The network based IPS, also known as “In line proactive protection.”  It will intercept all network traffic and inspects for suspicious behavior and code, either blocking malicious traffic or passing legitimate traffic forward.

Host Based Intrusion Prevention System (HIPS)

This will monitors a single host for suspicious activity by analyzing events occurring within that host.

Wireless Intrusion Prevention System (WIPS)

This type of activity monitors system that scans the WLAN channel, notifies personnel of suspicious activity, and sometimes, blocks activity discovers.

Network behavior analysis (NBA)

This will monitor the traffic and noting unusual actions or departures from normal operation, packet inspection, signature detection and real time blocking. NBA is always watching what’s happening inside the network, aggregating data from many points to support offline analysis.