Description |
This article describes that configuring Denial of Service (DoS) protection with a specific source country or geolocation allows blocking or restricting traffic originating from specific countries or geographical regions. This can help mitigate DoS attacks by preventing malicious traffic from entering the network infrastructure, reducing the impact of attacks, improving overall network performance, enhancing security posture, and providing additional control over network traffic based on geographic criteria. |
Scope | FortiGate. |
Solution |
To create an address object, follow these steps:
By creating an address object, it is possible to define a specific geolocation to be used in DDoS policies for filtering and controlling traffic based on geographic criteria.
To configure a DDoS policy in FortiGate, follow these steps:
7. Once the DDoS policy settings are configured, select the 'OK' or 'Save' button to create the policy.
By configuring a DDoS policy in FortiGate, it is possible to enhance network security by protecting against various types of DDoS attacks and taking appropriate actions to mitigate the impact of such attacks. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.