An IDS is a security countermeasure that monitors traffic and events looking for signs of intruders. Host-based IDS monitors “system events”, “log files” etc. where as Network based IDS monitors “network traffic”, ”usually promiscuously” etc.
