This is a diagram to do a Fortinet Dos Lab.
![](https://172.105.20.94/wp-content/uploads/2021/12/image.png)
Fortinet – Policy and Objects – IPv4 DoS Policy.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-1.png)
Change TCP_port_scan setting to 5 and ICMP_flood setting to 4.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-2.png)
![](https://172.105.20.94/wp-content/uploads/2021/12/image-3.png)
Configure quarantine setting on the Fortinet DoS Policy.
config firewall DoS-policy
edit 1
set interface “port1”
set srcaddr “all”
set dstaddr “all”
set service “ALL”
config anomaly
edit “icmp_flood”
set status enable
set log enable
set quarantine attacker
set quarantine-expiry 5m
set quarantine-log disable
set threshold 4
next
![](https://172.105.20.94/wp-content/uploads/2021/12/image-4.png)
config anomaly
edit “tcp_port_scan”
set status enable
set log enable
set quarantine attacker
set quarantine-expiry 5m
set quarantine-log disable
set threshold 5
next
![](https://172.105.20.94/wp-content/uploads/2021/12/image-5.png)
Sending 5 packets per second, Fortinet starts to block the excessive ICMP packets.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-6.png)
Check Fortinet Anomaly log.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-7.png)
Fortinet Fortiview.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-8.png)
Fortinet Monitor – Banned IP. AT IP Address was blocked by Fortinet Firewall.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-9.png)
Doing port scan on Kali machine by using Nmap command.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-10.png)
Fortinet was blocked port scan on the opened port 80.
![](https://172.105.20.94/wp-content/uploads/2021/12/image-11.png)