TOPIC: How do you implement IDS in havily based switched network?

here is the solution

http://www.sans.org/resources/idfaq/switched.php

I always try to carry with me a hub for these situations - its amazing how handy it be at times

I thought i understand most of article but latere i thought that i have not clear idea of tape so can anyone of you explain me what is tape and basic functions it performs ?

I'm assuming you mean a tap so I'll explain what that is. A tap is a device that is inserted on one ethernet cable to provide a means of sniffing the data going to and from the tap without sacrificing bandwidth(like a hub would). The tap device usually has 4 ports. The first two take the terminated ends of the ethernet cable you want to tap. The other two are the ports in which the data tapped from the first two are sent out. One is egress(outgoing traffic) and the other is ingress(incoming traffic). So you run an ethernet cable from those ports to the IDS and you can start passively sniffing.

Taps are usually expensive devices but they are probably the best method to implement a sniffable infrastructure for an IDS on the front lines since the tap does not sacrifice bandwidth. Let me know if that clarified everything for you.