After a recent DoS attack on a network, senior management asks you to implement better logging functionality on all IOS-based devices.
Which two actions can you take to provide enhanced logging results? (Choose two.)
A. Use the msec option to enable service time stamps.
B. Increase the logging history.
C. Set the logging severity level to 1.
D. Specify a logging rate limit.
E. Disable event logging on all noncritical items.
Correct Answer: AB
The optional msec keyword specifies the date/time format should include milliseconds. This can aid in pinpointing the exact time of events, or to correlate the order that the events happened. To limit syslog
messages sent to the router’s history table and to an network management station based on severity, use the logging history command in global configuration mode. By default, Cisco devices Log error messages of
severity levels 0 through 4 (emergency, alert, critical, error, and warning levels); in other words, “saving level
warnings or higher.” By increasing the severity level, more granular monitoring can occur, and SNMP
messages will be sent by the less sever (5-7) messages.