List 2 differences between firewalls and an IDS?

• Firewalls control access to a network based on a set of rules, IDS monitor and analyze network traffic or system activities for suspicious behavior and provide alerts.

Under what circumstances would you choose a network-based IDS over a host-based IDS?

• You would choose a NIDS because of the Large Network Environment, Perimeter Defense, Traffic Analysis just to name a few. These help out in a wider range.

Name 3 major drawbacks of a NIDS?

• The three major drawbacks are High False Positive Rate, High False Positive Rate, and Resource Intensive and Performance Impact.

Resources:

https://www.rapid7.com/blog/post/2017/01/11/the-pros-cons-of-intrusion-detection-systems/