Network security devices like firewalls, IDS, and IPS help protect networks from common security threats. Firewalls can be hardware-based and filter traffic by port number at the network level or software-based and see all traffic on a host. IDS monitors network traffic for intrusions while IPS can actively prevent intrusions. VPN concentrators encrypt traffic entering and leaving the network. Common threats include DoS attacks, viruses, worms, and man-in-the-middle attacks. Mitigation techniques involve policies, user training, and software patching.