This is an interesting feature available through the Fortigate CLI that I came across.
Below are the commands to enable denied session to be added into the session table:
#config system settings #set ses-denied-traffic enable
#end
For optimum performance, adjust the global block-session-timer:
#config system global
#set block-session-timer <1-300> (default = <30>)#end
Here is a link to the Fortinet knowledge base with a good description of what this is:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD46328