12-23-2011 09:57 AM
i have a cluster configuration, where only the master firewall have utm and idp license. This configuration works fine and the customer has no problem if there is no idp for a few hours if the master unit get damaged.
Because of the UTM policie rules the slave firewall says there is no license for anti-virus and anti-spam. And since 11.4 I also get a commit warning:
root@firewall-master# commit node0: configuration check succeeds node1: [edit security utm feature-profile anti-virus type] 'type juniper-express-engine' warning: requires 'av_key_kaspersky_engine' license [edit security utm utm-policy pol_utm_av_as] 'anti-spam' warning: requires 'anti_spam_key_sbl' license commit complete node0: commit completeIs there any way to suppress this warnings and alarms? Or can I activate a filter rule with the groups function to filter out the "utm-policy" statement in the policies?
12-26-2011 06:07 PM
Agree, probably no way around it. you would need different policies on the backup device that don't use UTM.
Suggest licensing the second...
If my post helped you, please feel free to give me kudos.