Hi,

 

i have a cluster configuration, where only the master firewall have utm and idp license. This configuration works fine and the customer has no problem if there is no idp for a few hours if the master unit get damaged.

 

Because of the UTM policie rules the slave firewall says there is no license for anti-virus and anti-spam. And since 11.4 I also get a commit warning:

root@firewall-master# commit 
node0: 
configuration check succeeds
node1: 
[edit security utm feature-profile anti-virus type]
  'type juniper-express-engine'
    warning: requires 'av_key_kaspersky_engine' license
[edit security utm utm-policy pol_utm_av_as]
  'anti-spam'
    warning: requires 'anti_spam_key_sbl' license
commit complete
node0: 
commit complete

Is there any way to suppress this warnings and alarms? Or can I activate a filter rule with the groups function to filter out the "utm-policy" statement in the policies?