The correct answer is a network tap. A network tap is a specific type of passive device that allows for monitoring of network traffic through mirroring the traffic to another port or device for analysis. It is designed to be invisible to other devices and does not introduce delays or alterations to the traffic flow, which is characteristic of passive devices. A jump server, while used for secure remote access, is an active device as it actively interfaces with network traffic and user connections. An intrusion prevention system, although it can monitor network traffic, is an active device because it not only monitors but also has the capability to take actions such as blocking or modifying packets based on predefined rules. It's critical to differentiate between passive and active devices in network security to ensure the correct tool is used for the desired outcome without introducing unintended risks.