Which logs are likely to reveal the IP address and MAC address of a rogue device on a network?

The correct answer is DHCP logs because they record the details of devices requesting IP addresses on a network. When a device connects to a network and requests an IP address, the DHCP server assigns it an IP address and typically logs relevant information, including the MAC address of the requesting device. This information helps network administrators identify and manage devices on the network, including rogue devices that may not have permission to connect.

Firewall logs, while useful for tracking traffic and identifying potential security threats, may not directly provide information about MAC addresses or the initial connection requests made to obtain an IP address. Access logs can track user authentications and resource access, but they do not primarily focus on device identification via IP and MAC addresses. Network flow logs provide insights into network traffic patterns but do not typically log devices' details like DHCP logs do.