Description | This article describes how to set up DoS policy exceptions. |
Scope | FortiGate. |
Solution |
Like Firewall policy, DoS policy works top-down. Therefore, if a policy for a specific IP and service to which the DoS policy is not applied is created at the top, an exception is processed.
Example:
2. The policyid 2 was set to block all packets when a DoS attack occurs on the source IP 10.0.1.0/24.
3. Policy3 was created to enable communication only for HTTP and DNS services of 10.0.1.10 IP. The action was arbitrarily selected as 'Disabled'.
4. Result in 10.0.1.10 PC.
The HTTPS site (https://google.com) failed to access, and the HTTP site (http://httpbin.org) succeeded.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.