New CCNA – Syslog Questions
If you are not sure about Syslog, please read our Syslog tutorial.
Question 1
What are the popular destinations for Syslog messages to be saved?
A. Flash
B. The logging buffer RAM
C. The console terminal
D. Other terminals
E. Syslog server
Answer: B C E
Explanation
By default, switches send the output from system messages and debug privileged EXEC commands to a logging process. The logging process controls the distribution of logging messages to various destinations, such as the logging buffer (on RAM), terminal lines (console terminal), or a UNIX syslog server, depending on your configuration. The process also sends messages to the console.
Note: Syslog messages can be written to a file in Flash memory although it is not a popular place to use. We can configure this feature with the command logging file flash:filename.
Question 2
Syslog was configured with a level 3 trap. Which 3 types of logs would be generated (choose four)
A. Emergencies
B. Alerts
C. Errors
D. Warnings
E. Critical
Answer: A B C E
Explanation
The Message Logging is divided into 8 levels as listed below:
| Level | Keyword | Description |
| 0 | emergencies | System is unusable |
| 1 | alerts | Immediate action is needed |
| 2 | critical | Critical conditions exist |
| 3 | errors | Error conditions exist |
| 4 | warnings | Warning conditions exist |
| 5 | notification | Normal, but significant, conditions exist |
| 6 | informational | Informational messages |
| 7 | debugging | Debugging messages |
The highest level is level 0 (emergencies). The lowest level is level 7. If you specify a level with the “logging console level” command, that level and all the higher levels will be displayed. For example, by using the “logging console warnings” command, all the logging of emergencies, alerts, critical, errors, warnings will be displayed.
In this question level 3 trap is configured so Emergencies, Alerts, critical and Errors messages are displayed. Although this question only requires to choose 3 correct answers but maybe something is missing here.
Question 3
Which three statements about Syslog utilization are true? (Choose three)
A. Utilizing Syslog improves network performance.
B. The Syslog server automatically notifies the network administrator of network problems.
C. A Syslog server provides the storage space necessary to store log files without using router disk space.
D. There are more Syslog messages available within Cisco IOS than there are comparable SNMP trap messages.
E. Enabling Syslog on a router automatically enables NTP for accurate time stamping.
F. A Syslog server helps in aggregation of logs and alerts.
Answer: C D F
Question 4
What command instructs the device to timestamp Syslog debug messages in milliseconds?
A. service timestamps log datetime localtime
B. service timestamps debug datetime msec
C. service timestamps debug datetime localtime
D. service timestamps log datetime msec
Answer: B
Explanation
The “service timestamps debug” command configures the system to apply a time stamp to debugging messages. The time-stamp format for datetime is MMM DD HH:MM:SS, where MMM is the month, DD is the date, HH is the hour (in 24-hour notation), MM is the minute, and SS is the second. With the additional keyword msec, the system includes milliseconds in the time stamp, in the format HH:DD:MM:SS.mmm, where .mmm is milliseconds
(Reference: http://www.cisco.com/c/en/us/td/docs/ios/fundamentals/command/reference/cf_book/cf_r1.html#wp1030116)
Question 5
What is the default Syslog facility level?
A. local4
B. local5
C. local6
D. local7
Answer: D
Question 6
What levels will be trapped if the administrator executes the command
router(config)# logging trap 4
A. Emergency
B. Notice
C. Alert
D. Error
E. Warning
Answer: A C D E
Explanation
The Message Logging is divided into 8 levels as listed below:
| Level | Keyword | Description |
| 0 | emergencies | System is unusable |
| 1 | alerts | Immediate action is needed |
| 2 | critical | Critical conditions exist |
| 3 | errors | Error conditions exist |
| 4 | warnings | Warning conditions exist |
| 5 | notification | Normal, but significant, conditions exist |
| 6 | informational | Informational messages |
| 7 | debugging | Debugging messages |
If you specify a level with the “logging trap level” command, that level and all the higher levels will be logged. For example, by using the “logging trap 4″ command, all the logging of emergencies, alerts, critical, errors, warnings will be logged.
Question 7
A network administrator enters the following command on a router: logging trap 3. What are three message types that will be sent to the Syslog server? (Choose three)
A. informational
B. emergency
C. warning
D. critical
E. debug
F. error
Answer: B D F
Question No.4 – Answer is ‘D’. It was given as ‘B’ which is incorrect.
Question_4(config)#service timestamps ?
debug Timestamp debug messages
log Timestamp log messages
“service timestamps debug datetime msec” seems legit imo
@krishaa – Answer to Q4 is ‘B’ as stated (service timestamps debug datetime msec); see the link
Q5
hi Ceca, where did you take your exam? im from philippines.
I have passed the exam with 986 today. Labs Acl, Acl2(modification 3) and eigrp (As 12 and IPs different). All questions from 9tut just a few from dumps e.g OSPFV2 vs OSPFV3. Read all topics from 9tut start with notes for understanding. After that master all the questions and its a guaranteed pass. Dumps can help to check on new questions e.g the one above and a few others. With 9tut info dumps are just something to assure you, you are ready. All the best feel free to raise any queries. Also check my comment on modification 3 on ACL2 page.
q4: answer D —service timestamps log datetime [msec] [localtime] [show-timezone]
Q7 in my exam yesterday
Q4: Answer is B. The question states the command for “debug messages” and not for “system logging messages”
Hi Phatt, How can we get the dumps? Is it free or we need to pay?
Question 2 is asked wrong – it asks for 3 logs then choose 4
Syslog was configured with a level 3 trap. Which 3 types of logs would be generated (choose four)
Direct from cisco -
For example, if you enter a command that specifies severity level 3, the ACE applies the command results to messages with a severity level of 0, 1, 2, and 3.
Table 1-1 lists the log message severity levels.
Table 1-1 Log Message Severity Levels
Level Number
Level Keyword
Description
0 emergency
System unusable (for example, the ACE has shut down and cannot be restarted, or it has experienced a hardware failure).
1 alert
Immediate action needed (for example, one of the ACE subsystems is not running).
2 critical Critical condition (for example, the ACE has encountered a critical condition that requires immediate attention).
3 error
Error condition (for example, error messages about software or hardware malfunctions).
q5. The answer should be level 6 (informational), right?, In tutorial it is mentioned that. “By default, syslog servers receive informational messages (level 6)”
Somebody please confirm
Thank You
Thanks for the awesome questions!
Keep writing :)
Passed Marks: 975, 99.8% from 9tut no need to exert effort for latest dumps. Labs EIGRP, ACL Sim 1 & 2, practice all modifications coz it was given on random. 9tut is enough to pass the exam. GoodLuck. .
Q5 the correct answer is level 6, you are right “A”
Sorry, but in the Cisco Site Configuration Guide, says the following: By default, Cisco IOS devices, CatOS switches, and VPN 3000 Concentrators use facility local7.
So, Which affirmation is correct? :(
Level 6 or Level 7 is the default value?
Hi,
The default value for “logging trap [severity-value]” is 6.
The default value for “logging facility [facility-value]” is local7.
Local7 is the correct answer for Q5.
Thanks a lot Buddy “Johny”!
thanks Johny for the answer Q5
hello,
please send me packet tracer and latest dumps.
I am preparing my CCNA.
email: tiankoy@live.ca
please send me a dump for CCNA 200-120.. thanks – brancohc@gmail.com
please send me a dump for CCNA 200-120.. thanks –prabu3907@gmail.com
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Just passed my CCNA with 958. Question 3 present. Thanks to 9tut
Passed CCNA on 5th September with 986. ACL1, ACL2(MOD.3) and Eigrp labs. All the question were from 9tut and Watson, thanks 9tut. Keep up the good work you are doing by providing study material.
Q6 was in exam
Q4 in 5th Sep 2014 exam
Rani/// what do mean Q4 ?
Guys anyone can explain the answer for Q1.In reference link,it mentioned as syslog messages will be stored in NON-CONSOLE TERMINAL,CONSOLE LINE AND FLSH MEMORY,SYSLOG SERVER AND INTERNAL BUFFER…
But here answer for Q1 includes console terminal and left Flash…Is it rit?How?
@RASUL
That is a tricky one. The key is the word “popular”. It can be done, but usually it is not.
@RASUL
I forgot your “how?” question. Flash memory has a very limited capacity, thus it would not be a very good place to store large log files.
Thanks bro….Got it….
Found this useful
“Do I Notice When Evenings Come Around Early”
Debug, Informational, Notice, Warning, Error, Critical, Alert, Emergency
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Thanks
Best Regard
Admins
Passed today with 958
Q7 was on test
thanx 9tut
Hi Ammar,as I have stated ehlewsere I currently have access just to one Huawei switch so I cannot really try this anymore but the configuration should be really simple (as you can see in the article). Also your description is too generic and there could be a lot of problems that might be unrelated to the router config itself. I would suggest to check if the messages are actually arriving to the syslog PC, if your path is actually transmitting those messages and if your configuration on both ends is correct as well. Also it might be a good idea to check the documentation from Huawei (operations manual) as that will give you details and examples for the specific HW/SW.Hope that helps.
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Thanks
Best Regard
Admins
in 2011 i was passed with 894
eng.hijazin@hotmail.com
from jordan
plz send me latest dumbs m going for ccna exam email, bilawal.khan049@yahoo.com
Hey gus, this Voucher is really hot ? Did anybody buy it ?
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
Regards,
Qasim
Network Engineer
0347-3145824
isn’t the default level for syslog information which is level 6 how is 5 right someone please explain.
Hi great blog,
Thanks for all the posting help a lot.
please anyone can help and send the latest dumps for ccna 200-120 to my email :
Crypterdk@gmail.com
thanking you in advance
:-)
can anyone send me the latest dumps. my email darryadedi@gmail.com
Question #7 on my exam last Sunday, 2014/10/5.
Thanks a lot 9tut. Almost all questions were from here except for 2.
Had the EIGRP and ACL 1 sims.
Hi everyone. pass my exam today 986. Sims ACL, ACL2 different IP – mode 3 – looking for Host B to get access to Web Server. EIGRP AS22.
I think all question are in 9tut, 90% any way. I only study watson dumps and 9tut.
Good luck to everyone!!
Thanks 9tut.
ها أنا في بدايتي أشكركم
Dear all
Please anyone send a recently dump because the next week I Have the exam CCNA , my mail is alessandro1982to@gmail.com
Thanks
Hello Alex by any chance did you get the recent dum , if u did can u send me a copy of it gutnyc@yahoo.com
thanx