This is probably a really stupid question:
What is the difference between an IDS/IPS service vs a default deny firewall in terms of security effectiveness? Are you more or less secure using a firewall vs an IDS/IPS system?
I feel like if you are operating on a principle of Default Deny, that an IDS doesn’t really add anything.
Anyone care to interject?