Does anyone know how to trouble-shoot state condition false positives.I can't see to find in the logs what is doing this ?----------------------------------------Hosts in state condition Unprotected access detected
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(84) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,510) -
Cisco Bugs
(31) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(139) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Management Center (FMC)
(3) -
Cisco Secure Firewall Threat Defense (FTD)
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(42) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(258) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(25) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,567) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(319) -
MPLS
(1) -
Multicloud Defense
(2) -
Network Management
(90) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,553) -
NGIPS
(1,872) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,769) -
Other Networking
(8) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(624) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(41) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I want to have our 5510 detect when we are getting a dictionary attack on our FTP server. Do I need the IPS module in order to this or can this be done on the base unit as well?Thank you.
Hi All, We are trying to deploy IDSM2, which is acting in promiscous mode at this moment to act as inline ..We are understanding that, there are couple of methods by which we can deploy that,one by making interface pair config and other in vlan pair...
I am setting up 2 redundant 5520's in failover mode to replace a Checkpoint FW. The new ASA's have 4 Gig and 1 fast ehternet interfaces to use. I need to establish 2 DMZ's, 2 outside connections, and obviously 1 inside interface. Since one interfa...
I have to create a Poison Pill where CSA can essentially disable a system to the point that it is unusable and not recoverable. I know there are several rules that can possibly do this by themselves, but I was wondering what would be the most effecti...
Resolved! IPS processes
is there a command you can use when logged in using the service account to stop and start the ips processes. I'd like to try that before having to reboot the device. It currently shows the MainApp as not running
Resolved! Load balancing on ASA
Hello,Can i load balance may traffic using single security appliance (ASA)Thank YOu
I am using SDM for the first time to set up a 871 router. There is a predfined policy that just seems counter intuitive. It is found in the Firewall and ACL section and is called sdm-permit. It is applied from the out-zone to self. This is the con...
I want to backup ASA configuration automatically, for example, once a day.I guess, I should use something like passwordless ssh to my ASA and run something like "save config and scp it to remote linux serer".Is there some article/howto that can help ...
Our ISP gave us a range of real internet ip address (10.1.1.1 to 10.1.1.15 for example). We have domain names registered to some of the ip addresses (ie www.webserver1.com -> 10.1.1.1, www.webserver2.com -> 10.1.1.2, etc).My outside interface on the...
What would need to be changed for this to be dynamic?access-list 100 extended permit ip 172.25.2.0 255.255.255.0 10.100.2.0 255.255.255.0access-list nonat extended permit ip 172.25.2.0 255.255.255.0 10.100.2.0 255.255.255.0nat (inside) 0 access-list ...
Pix 535 with 1GB RAM and running version 8.0(3). I would like to do this:static (i,o) 1.x.x.1 10.x.x.1 netmask 255.255.255.255static (i,o) 1.1.1.2 10.x.x.2 netmask 255.255.255.255....static (i,o) 1.x.x.x 10.x.x.x netmask 255.255.255.255How many stat...
Resolved! IDSM placement and redundancy question
Hi, Does the IDSM-2 support any sort of redundancy protocol?I can't see anything in the config guide.If I wanted to place a redundant pair on the outside of a pair of firewalls, how would I manage the redundancy of them.My other question is, is it be...
Resolved! how config VPN without encryption ?!
Hi all,Friends, I going to use two VPN connection between Cisco ASA's. One for data traffic (VPN encryption connections) and second for video traffic (NOT encryption VPN connection) ... I know how config VPN using ASDM. but i do not know how config...
Hi,I've a IPS 4255 with the version 6.0(3) and when t try to acess the IPS through HTTPS - IDM appers this error in Java Console(1.6.0_05-b13):"Invoking SGZ Loader...java.net.SocketException:Unexpected end of file from server"and i can't connect to m...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 07-18-2025 06:27 PM | ||
| 07-16-2025 04:21 AM | ||
| 07-06-2025 01:40 PM | ||
| 07-04-2025 01:59 AM | ||
| 06-19-2025 07:32 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 10 | |
| 7 | |
| 5 | |
| 2 | |
| 1 |
