A FortiDDoS device is configured to mitigate SYN flood attacks using the SYN cookie mode. What action does it take when it is mitigating an SYN flood attack and a SYN packet from a new source IP address arrives?
A. It replies with a SYN/ACK packet containing a cookie value in the TCP sequence field.
B. It replies with a SYN/ACK packets. One containing the right acknowledge value, the other one with a wrong acknowledge value.
C. It replies with a RST packet if the SYN packet does not contain the right cookie in the sequence field.
D. It replies with a SYN/ACK packet containing a cookie value in the TCP acknowledge field.
A