CompTIA Security+ SY0-701 Practice Question
Considering a secure network topology that includes a variety of protective devices, where should a network-based intrusion prevention system (IPS) be placed to optimize its effectiveness without compromising network efficiency?
Close to user workstations within the LAN to capture lateral movement and insider threats.
Immediately adjacent to the edge router to monitor all ingress and egress traffic.
Immediately behind the external firewall to filter authorized traffic for threats.
At the ingress of the datacenter to monitor high-volume internal traffic.