Thanks, that definitely helps.
I should mention here that my devices are 80Cs and, so, I have to do my DoS configuring from the CLI (still pretty bitter about that).
In FortiOS v5 it appears, unless I' m understanding this incorrectly, that we now have two preconfigured policies, one for IPv4 and one for IPv6. I' ve set up each anomaly in the default DoS-Policy (for IPv4) with default thresholds set to log and pass.
config anomaly
edit " tcp_syn_flood"
set status enable
set log enable
set action pass
set threshold 2000
next
...
end
Also in v5 it appears that that you now apply the DoS policies via the interface policies. In configuring the interface policy I' ve specified it as follows:
config firewall interface-policy
edit 1
set interface " wan1"
set srcaddr " all"
set dstaddr " all"
set service " ALL"
next
end
I don' t see any option to specify the ID of the DoS-Policy so, I' m guessing, that' s assumed. I have options to set application lists, av profiles, dlp profiles, and web filters but I have those defined and applied via FSSO groups.
Is there anything that I' m missing or am I good to go?