Intrusion Detection System (IDS)
Posted on 2004-08-13
I have been doing some research on security.
According to what I found the following can be setup.
They suggest the IDS to be a system listening in promiscuous mode, having no IP so it cannot be reached or detected.
How is this achieved? The way I understand it, to be able to see traffic it should be connected to a hub/switch, hence having a cable and NIC which will have an IP.
But the diagram doesn't show any switch or device where the IDS is connected to.
Can anyone bring some light over this matter please?
Thanks in advanced,