An organization wishes to protect its SIP Server from call flooding attacks. Which of the following configuration changes can be performed on the FortiGate unit to fulfill this requirement?
Question:
Which of the following configuration changes can be performed on the FortiGate unit to fulfill this requirement?
Options:
Apply an application control list which contains a rule for SIP and has the “Limit INVITE Request” option configured.
Enable Traffic Shaping for the appropriate SIP firewall policy.
Reduce the session time-to-live value for the SIP protocol by running the configure system session-ttl CLI command.
Run the set udp-idle-timer CLI command and set a lower time value.
Correct Answer
The Correct Answer for this Question is
Apply an application control list which contains a rule for SIP and has the “Limit INVITE Request” option configured.
