CompTIA Network+ (N10-007) — Question 528

Which of the following BEST describe the differences between an IDS and an IPS? (Choose two.)

Answer options

• A. An IDS will detect traffic anomalies and a predefined signature pattern, alert and log them, and allow them through the network.
• B. An IDS will detect traffic anomalies, alert and log them, and block the traffic.
• C. An IDS will detect previously unknown traffic anomalies, alert and log them, and block the traffic.
• D. An IPS will detect traffic anomalies, alert and log them, and allow them through the network.
• E. An IPS will detect previously unknown traffic signatures, and alert and log them.
• F. An IPS will detect traffic anomalies and a predefined signature pattern, alert and log them, and block the traffic.

Correct answer: A, F

Explanation

The correct answer is A and F because an IDS detects and logs traffic anomalies and signatures but does not block them, while an IPS does detect and block such traffic. Options B and C incorrectly state that an IDS can block traffic, and options D and E misrepresent the functions of an IDS and IPS regarding traffic handling.