Exam 300-101 | Question id=440 | Infrastructure Services |
After a recent DoS attack on a network, senior management asks you to implement better logging functionality on all IOS-based devices. Which actions can you take to provide enhanced logging results?
A. |
Use the msec option to enable service time stamps. | |
B. |
Increase the logging history. | |
C. |
Set the logging severity level to 1. | |
D. |
Specify a logging rate limit. | |
E. |
Disable event logging on all noncritical items. |
The optional msec keyword specifies the date/time format should include milliseconds. This can aid in pinpointing the exact time of events, or to correlate the order that the events happened. To limit syslog messages sent to the router’s history table and to an SNMP network management station based on severity, use the logging history command in global configuration mode. By default, Cisco devices Log error messages of severity levels 0 through 4 (emergency, alert, critical, error, and warning levels); in other words, “saving level warnings or higher.” By increasing the severity level, more granular monitoring can occur, and SNMP messages will be sent by the less sever (5-7) messages.