Which of the following capabilities is included in FortiWeb to protect web applications?

FortiWeb includes Web Application Firewall (WAF) capabilities specifically designed to protect web applications from a variety of attacks and vulnerabilities. WAF functionality allows FortiWeb to monitor, filter, and block HTTP traffic to and from a web application, effectively mitigating threats such as SQL injection, cross-site scripting (XSS), bot attacks, and other common web application vulnerabilities. By utilizing various security techniques such as rule-based filtering, signature-based detection, and behavioral analysis, FortiWeb ensures that only legitimate traffic reaches the web applications, thus maintaining their availability, integrity, and confidentiality.

The other options—IP filtering, encryption protocols, and network routing—although essential for overall network security and management, do not specifically address the protection of web applications in the way WAF capabilities do. IP filtering may help in controlling access at the network layer, encryption protocols provide secure communication channels, and network routing directs data traffic through the network, but none of these provides the specialized defenses against web application attacks that a WAF can offer.