When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?

Last Updated on August 14, 2021 by Admin 2

When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?

  • Drops the packet and moves on to the next one
  • Continues to evaluate the packet until all rules are checked
  • Stops checking rules, sends an alert, and lets the packet continue
  • Blocks the connection with the source IP address in the packet
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments