Which option is the minimum logging level that displays a log message when an ACL drops an incoming packet? A. Level 5 B. Level 7 C. Level 3 D. Level 6 Suggested Answer: D When the ACL logging feature is configured, the system monitors ACL flows and logs dropped packets and statistics for each flow that matches the deny conditions of the ACL entry. The log and log-input options apply to an individual ACE and cause packets that match the ACE to be logged. The sample below illustrates the initial message and periodic updates sent by an IOS device with a default configuration using the log ACE option. *May 1 22:12:13.243: %SEC-6-IPACCESSLOGP: list ACL-IPv4-E0/0-IN permitted tcp 192.168.1.3(1024) -> 192.168.2.1(22), 1 packet From the example above we can see when an ACL drops a packet, it generates a level 6 Syslog (%SEC-6-) Reference: https://www.cisco.com/c/en/us/about/security-center/access-control-list-logging.html This question is in 300-101 Cisco Implementing Cisco IP Routing (ROUTE) Exam For getting Cisco Certified Network Professional (CCNP) Routing and Switching Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Cisco. Trademarks, certification & product names are used for reference only and belong to Cisco. The website does not contain actual questions and answers from Cisco's Certification Exam.
Please login or Register to submit your answer