IDS/IPS

Like firewalls, intrusion detection system (IDS) and intrusion prevention system (IPS) are also software-based components.

IDS scans the network for potential attacks, analyzes them, and reports any detected attacks. IPS complements IDS by taking specific defensive measures if a potential attack should have been detected.

The analysis of such attacks is based on pattern matching and signatures. If specific patterns are detected, such as a service detection scan, IPS may prevent the pending connection attempts.