What is the minimum log level for the event generated when an ACL drops a packet?
A. 3
B. 4
C. 5
D. 6
E. 7
What is the minimum log level for the event generated when an ACL drops a packet?
What is the minimum log level for the event generated when an ACL drops a packet?
A. 3
B. 4
C. 5
D. 6
E. 7
Thanks for the link, the answer is D.
Answer is D = 6
When the ACL logging feature is configured, the system monitors ACL flows and logs dropped packets and statistics for each flow that matches the deny conditions of the ACL entry.
The log and log-input options apply to an individual ACE and cause packets that match the ACE to be logged. The sample below illustrates the initial message and periodic updates sent by an IOS device with a default configuration using the log ACE option.
*May 1 22:12:13.243: %SEC-6-IPACCESSLOGP: list ACL-IPv4-E0/0-IN permitted tcp 192.168.1.3(1024) -> 192.168.2.1(22), 1 packet
Reference: https://www.cisco.com/c/en/us/about/security-center/access-control-list-logging.html
From the example above we can see when an ACL drops a packet, it generates a level 6 Syslog (%SEC-6-)
I don’t agree with this answer.
For me, the minimum is information (6)
https://www.cisco.com/c/en/us/about/security-center/access-control-list-logging.html
!– Configure logging severity level, log buffer size, and rate
!– limiting.
!
logging buffered informational
logging buffered 16386
logging rate-limit 100 except 4