When it comes to IDS, there are various things to consider: Host – IDS (HIDS) vs Network IDS (NIDS). There is also Signature Based vs Anomaly Based. And finally IDS vs IPS. How does one figure out figure out what to use and when? Provide your views on the various IDS techniques and what is the best approach to working through them?