We are having issues with commit in the FWs from last Wednesday. The error that we receive is: "Error: Profile compiler : can not find tid 40006 in threat database". The commit finishes correctly, but with the warning of the error.
We have revert the content update of the apps and threats to a previous one and the commit finishes correctly. With the latest content updates we are having issues too.
¿Any idea why are we receiving the error? We have checked that the threat ID 40006 exists.
You might have an exception for Threat ID 40006 in one or more of your security profiles. A simple way to check your whole config for that can be done in CLI:
> show config running
hit / (forward slash) to begin searching, and enter:
You'll have to scroll up (using the "J" key, may also work with arrow keys) to the top of that entry to find the profile name, and there may be multiple profiles that have it.
Warning message comes from firewall because Threat ID 40006 was disabled starting from Application version 8165 and later.
Please find below release note.
I did what you suggested from the CLI and found the 40006 threat exception. The WebUI did not show it in the exceptions list for me to delete from there. I went back to the CLI, and fumbled my way through it using the following...
This is used to get the output in "set" format. (This helps those of us who are not overly familiar with PAN-OS CLI.)
> set cli config-output-format set
Enter Config mode.
Show configuration and search for Threat ID 40006.
# show /40006
# show | match 40006
Use the above output results to create a "delete" command.
# delete profiles vulnerability "vuln-profile-name" threat-exception 40006
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!