What action can a FortiGate device take upon detecting a threat?

The capability of a FortiGate device to block traffic upon detecting a threat is a critical feature in network security. When a FortiGate appliance identifies a potential threat, it typically has the ability to immediately block the malicious traffic to prevent it from causing harm to the network. Additionally, logging the event is essential for record-keeping and later analysis, enabling administrators to assess incidents and take appropriate actions. Alerting administrators is also crucial, as it ensures that the relevant personnel are notified in real-time about security events, allowing for a quick response to threats.

While other options may seem plausible, they do not encompass the full suite of actions that FortiGate devices can perform for effective threat mitigation. For example, redirecting traffic to a safe zone might not be feasible or appropriate depending on the nature of the threat. Temporarily disabling all connections would be too disruptive to normal operations and could significantly impact business activities. Continuing traffic without interruption while logging does not adequately address the threat, as it could allow potential harm to occur. Hence, the combination of blocking the traffic, logging the event, and alerting administrators represents a comprehensive and effective response to detected threats.