Your organization is deploying a network security monitoring solution to increase visibility into potential malicious activity. The network team has to decide whether to employ an active inline security device or a passive tap/monitor setup. Considering the organization's requirement to avoid interrupting network traffic unless absolutely necessary, which solution would best fit this criteria?
A passive tap/monitor setup is the correct solution because it allows network traffic to be inspected without inserting the monitoring device directly into the path of the network data flow. This setup ensures that traffic continues to flow unimpeded even if the monitoring system fails, meeting the organization's requirement to avoid interrupting traffic. In contrast, an inline device, while it can actively block or modify traffic, would introduce a single point of failure where traffic could potentially be stopped if the device encounters issues.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a passive tap/monitor setup?
Open an interactive chat with Bash
What are the benefits of a passive tap/monitor setup over an active inline device?
Open an interactive chat with Bash
What is an active inline security device and its potential drawbacks?