IP-Tags would show up only when User-Tags is checked

• On Data Redistribution, We have the option to select the modules that we want to redistribute throughout devices.
  • Example:- IP User Mappings, IP-tags, User-Tags, HIP, Quarantine list.
• IP tags are not seen until we select both 'IP Tag' and 'User Tag' under Data-redistribution. If we select only 'IP Tag' the IP tag does not get redistributed to the firewall.
• When we check IP-Tag under-redistribution we would not see any tags but tags are seen only when IP-Tag & User-Tags are checked.

When only IP Tag is Checked:-

>show redistribution service client all

IP address/port Vsys-ID Version Status Redistribution
---------------------------------------------------------------------------------------------
172.31.39.151/55302 1 6 idle T <<<<<<<<<<<<< IP Tag selected

Redistribution: 'I': IP User Mapping
Redistribution: 'T': IP Tag
Redistribution: 'U': User Tag
Redistribution: 'H': HIP Report
Redistribution: 'Q': Quarantine

> show object registered-ip all

​​​​​​When IP-Tags and User-Tags are checked:-

show redistribution service client all

IP address/port Vsys-ID Version Status Redistribution
---------------------------------------------------------------------------------------------
172.31.39.151/56482 1 6 idle TU <<<<<<<<<<<<<<<<<<<< IP and User Tag Enabled

Redistribution: 'I': IP User Mapping
Redistribution: 'T': IP Tag
Redistribution: 'U': User Tag
Redistribution: 'H': HIP Report
Redistribution: 'Q': Quarantine

> show object registered-ip all

registered IP Tags
---------------------------------------- -----------------

3.64.166.178 *
"Malicious-IPs (never expire) " <<<<<<<<<<<< Tags Observed

7.36.189.140 * 
"Malicious-IPs (never expire) " 

• PAN-OS 10.0 and above
• Data Redistribution

1. The issue is fixed under PAN-222579 in PAN-OS versions 10.2.10-h21, 10.2.11, 11.1.0, 11.2.0 and higher.
2. Upgrade to the latest versions will resolve the issue.
3. As a workaround: Check both IP-Tags and User-Tags to get the redistributed logs over devices.