Created on 07-04-2023 01:02 AM Edited on 11-20-2024 06:49 AM By Jean-Philippe_P
Description |
This article describes that configuring Denial of Service (DoS) protection with a specific source country or geolocation allows blocking or restricting traffic originating from specific countries or geographical regions. This can help mitigate DoS attacks by preventing malicious traffic from entering the network infrastructure, reducing the impact of attacks, improving overall network performance, enhancing security posture, and providing additional control over network traffic based on geographic criteria. |
Scope | FortiGate. |
Solution |
To create an address object, follow these steps:
By creating an address object, it is possible to define a specific geolocation to be used in DDoS policies for filtering and controlling traffic based on geographic criteria.
To configure a DDoS policy in FortiGate, follow these steps:
7. Once the DDoS policy settings are configured, select the 'OK' or 'Save' button to create the policy.
By configuring a DDoS policy in FortiGate, it is possible to enhance network security by protecting against various types of DDoS attacks and taking appropriate actions to mitigate the impact of such attacks.
Note: It is out of TAC's scope to define Thresholds, or be accountable for packet loss for configured Thresholds during troubleshooting. It is up to the FortiGate Administrator to monitor the traffic and determine the correct Thresholds to apply for each environment. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.