入侵检测系统(Intrusion Detection System,IDS)是一种对网络传输进行即时监视,在发现可疑传输时发出警报或者采取主动反应措施的网络安全设备,被认为是防火墙之后的第二道安全闸门,其功能类似于楼宇内的实时监控系统。相比于防火墙要求事先设置规则的静态、被动的防护,入侵检测系统能够提供动态、主动的网络安全防护。本文将从常见分类、主要指标、主流品牌等3方面,对入侵检测系统进行简要介绍。 Intrusion Detection System (IDS) is a kind of network security device that monitors network transmission immediately and alerts or takes initiative measures to detect suspicious transmission. It is regarded as the second security gate after the firewall. Function similar to real-time monitoring system in the building. In contrast to the firewall requirements set in advance the rules of static and passive protection, intrusion detection system can provide dynamic and proactive network security. This article will be from the common classification, the main indicators, the mainstream brands 3 aspects of intrusion detection system is briefly introduced.