John, a pentester, has discovered a firewall during his pentesting. He decides to try evade the firewall using one of the following two commands $($parameters$)$:

nmap $-$sS $-$Pn $-$D $10\mathrm{.}10\mathrm{.}10\mathrm{.}1,10\mathrm{.}10\mathrm{.}10\mathrm{.}2,$ ME $-$F $10\mathrm{.}10\mathrm{.}4\mathrm{.}120$

nmap $-$sS $-$Pn $-$D RND$,$ RND$,$ ME $-$F $10\mathrm{.}10\mathrm{.}4\mathrm{.}120$

What is the type of firewall evasion technique being used? How do the parameters enable the evasion of the firewall? Identify the risk to the organisation if John is successful in evading the firewall. How the organisation can mitigate against the risks? $(7)$