To find the route that packets take through your network, attackers use IP source route attacks. The attacker sends an IP packet and uses the response from your network to get information about the operating system of the target computer or network device.
The default configuration of the XTM device is to drop IP source route attacks. From
About Default Packet Handling Options