CCNP Security FAQ : Syslog and the Cisco Security Appliance

CCNP Security FAQ : Syslog and the Cisco Security Appliance

Q1. What is the command for sending syslog messages to the Telnet session?
A. logging console
B. logging monitor
C. telnet logging
D. send log telnet

Answer: B

Q2. Which of the following is the correct command syntax to set the logging level to 5 for syslog message 403503?
A. logging message 403503 level 5
B. logging 403503 5
C. logging message 403503 5
D. logging 403503 level 5

Answer: A

Q3. A Cisco Security Appliance can be configured to send syslog messages to all of the following except which one?
A. Console
B. Telnet session
C. Serial port
D. Syslog server

Answer: C

Q4. Which of the following is not an example of a severity level for syslog configuration?
A. Emergency
B. Alert
C. Prepare
D. Warning

Answer: C

Q5. What is syslogd?
A. A message type that forms the syslog services
B. A service that runs on UNIX machines
C. A hardware subcomponent that is required for syslog configuration on a PIX
D. Cisco application software

Answer: B

Q6. Which port does syslogd use by default?
A. UDP 512
B. TCP 514
C. TCP 512
D. UDP 514

Answer: D

Q7. Which of the following logging severity levels are matched up correctly?
A. Error → 4
B. Alert → 2
C. Warning → 4
D. Notification → 1

Answer: C

Q8. Which of the following is the highest-importance logging level?
A. 9
B. 7
C. 0
D. 3

Answer: C

Q9. By using which command could you view the logging setting from the command line?
A. show log setting
B. show logging
C. show syslog
D. view log

Answer: B

Q10. What command would you use to view logs that are in memory?

Answer: show logging buffered

Q11. On which port does syslogd listen by default?

Answer: Syslogd listens on UDP port 514 by default.

Q12. What is the total number of logging facilities available for Cisco Security Appliance syslog configuration?

Answer: Eight logging facilities are commonly used for syslog—facilities 16 to 23.

Q13. What is the command for sending syslog messages to Telnet sessions?

Answer: logging monitor

Q14. For what is the logging trap command used?

Answer: The logging trap command determines which levels of syslog messages are sent to the syslog server.

Q15. What is the command used to enable logging on the failover Cisco Security Appliance unit?

Answer: logging standby

Q16. Why would you use the timestamp command parameter?

Answer: The timestamp command parameter specifies timestamp values on the syslog messages sent to the syslog server for later analysis of the logs.

Q17. What is PFSS?

Answer: The PIX Firewall Syslog Server (PFSS) is a Windows NT–based syslog server designed for use with the PIX Firewall.

More Resources

About the author

Scott

Leave a Comment