Sorry if this isn't the perfect fit for this forum (I know it says public cloud). But here is the deal, we are currently attempting to use aws tags to populate address groups in panorama. We currently are attempting to do this with tags based on environment type and Business unit. So in panorama we have groups for example Development (for all development), Development-BU1 (for just those IPs in the development environment and in BU1), development-bu2.... Ect. When I look at just the development address group I see 8, IPs. When I check the dev access groups for BUs I see the same 8 IPs. Despite verifying on the instance in AWS that these have different BUs listed. Its almost as if the "and" function between aws tags when creating a PA tag is broken for some of the groups.
... View more