Intrusion prevention includes which of the following? (Choose three)

Intrusion prevention is a proactive security measure that actively monitors network traffic and identifies potential threats in real time. The selected answer, which is about blocking potentially dangerous file types, is a crucial component of intrusion prevention systems (IPS). These systems analyze incoming data packets and can block specific file types that are known to pose risks, such as executable files that could carry malware. By doing so, they help prevent potential breaches or exploits that could compromise the integrity and confidentiality of the network.

URL filtering plays a significant role in intrusion prevention as well, as it involves monitoring and controlling access to web content based on predefined criteria. By filtering out potentially harmful URLs, it can prevent users from accidentally accessing malicious sites that might host malware or phishing attacks. This function is essential for maintaining network security and ensuring that users are not exposed to unwarranted risks while browsing.

Data Loss Prevention (DLP) focuses on safeguarding sensitive information from being misused, lost, or unintentionally shared outside the organization. While this is critical for protecting data integrity, it is considered a different layer of security rather than a direct function of intrusion prevention systems. Therefore, while DLP plays a vital role in a comprehensive security strategy, it does not specifically fall under the umbrella of intrusion prevention actions