You are configuring a FortiGate wireless network to support automated wireless client quarantine using IOC.
Which two configurations must you put in place for a wireless client to be quarantined successfully? (Choose two.)
You are configuring a FortiGate wireless network to support automated wireless client quarantine using IOC.
Which two configurations must you put in place for a wireless client to be quarantined successfully? (Choose two.)
To successfully quarantine a wireless client using IOC on a FortiGate wireless network, two configurations are essential: configuring the wireless network to be in tunnel mode, which ensures that all wireless traffic passes through the firewall enabling control and inspection; and integrating the FortiGate device with a FortiAnalyzer in the Security Fabric, which processes the logs and handles IOC information necessary for detecting threats and initiating quarantine actions.
Correct are A & B
According to the admin guide , A should be correct
Quarantine function only works on tunnel mode https://docs.fortinet.com/document/fortiap/6.4.0/fortiwifi-and-fortiap-cookbook/175405/configuring-quarantine-on-ssid#:~:text=To%20quarantine%20a%20wireless%20client%20on%20the,Go%20to%20Security%20Fabric%20%3E%20Physical%20Topology.
Tunnel mode because it´s essential that the traffic passes the firewall. p. 395 But C is wrong as the traffic, as the traffic is blocked (p. 395) B, because FortiAnalyzer processes the logs using information from IOC services