Certified Ethical Hacker (CEH) — Question 86

What is the main advantage that a network-based IDS/IPS system has over a host-based solution?

Answer options

• A. They do not use host system resources.
• B. They are placed at the boundary, allowing them to inspect all traffic.
• C. They are easier to install and configure.
• D. They will not interfere with user interfaces.

Correct answer: B

Explanation

The correct answer, B, highlights that network-based IDS/IPS systems are strategically positioned to monitor all network traffic, which gives them a broader view of potential threats. Options A, C, and D may have some validity in specific contexts, but they do not capture the primary advantage of comprehensive traffic inspection afforded by network-based solutions.