NSE 4 – FortiGate 5.4 — Question 20

What FortiGate feature can be used to block a ping sweep scan from an attacker?

Answer options

• A. Web application firewall (WAF)
• B. Rate based IPS signatures
• C. One-arm sniffer
• D. DoS policies

Correct answer: B

Explanation

The correct answer is B, as rate-based IPS signatures can detect and block scanning activities like ping sweeps by monitoring the rate of incoming traffic. Options A and C are not designed for this purpose; WAF focuses on web traffic and one-arm sniffer is for monitoring. Option D, while related to denial of service attacks, does not specifically target ping sweep scans.