Certified Ethical Hacker (CEH) — Question 31
You are the Systems Administrator for a large corporate organization. You need to monitor all network traffic on your local network for suspicious activities and receive notifications when an attack is occurring. Which tool would allow you to accomplish this goal?
Answer options
- A. Network-based IDS
- B. Firewall
- C. Proxy
- D. Host-based IDS
Correct answer: A
Explanation
The correct answer is A, Network-based IDS, because it is specifically designed to monitor network traffic for suspicious activities and can alert you to potential attacks. A Firewall primarily controls incoming and outgoing traffic but does not monitor for specific attack patterns. A Proxy acts as an intermediary for requests and responses, while a Host-based IDS monitors individual devices rather than the entire network.