Last Updated on August 14, 2021 by Admin 2
When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?
- Drops the packet and moves on to the next one
- Continues to evaluate the packet until all rules are checked
- Stops checking rules, sends an alert, and lets the packet continue
- Blocks the connection with the source IP address in the packet