(ISC)2 Certified in Cybersecurity Practice Exam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the (ISC)2 Certified in Cybersecurity Exam with comprehensive quizzes and extensive question banks. Enhance your skills with detailed explanations and practice tests designed to improve your expertise for the certification exam. Get exam-ready now!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.


True or False: Out-of-band IPS deployment mode does not process traffic directly but connects to a SPAN port on a switch.

  1. True

  2. False

The correct answer is: True

The statement that out-of-band IPS deployment mode does not process traffic directly but connects to a SPAN port on a switch is accurate. In out-of-band deployment, the intrusion prevention system (IPS) is not inline with the traffic flow; instead, it operates in a manner where it analyzes a copy of the network traffic without being part of the data path. By connecting to a SPAN (Switched Port Analyzer) port, the IPS can monitor live traffic as it passes through the switch. This allows the system to identify and analyze potential threats without the risk of accidentally dropping packets or affecting performance, which can occur in inline deployments. Thus, the answer is true; out-of-band IPS relies on a SPAN port for traffic visibility rather than processing it directly.