NO PING between ipsec interfaces

Question

hi all .i came across strange issue -i have multiple ipsec tunnels on my F5 configured with&nbsp; ipsec interface ips on both ends&nbsp;all remote ends are fortigate devices -on all tunnels i can ping the remote tunnel ip with no issue&nbsp;but i have one tunnel (which is up) that i cannot ping the other sides ipsec intrface&nbsp;how can i debug this with cli ?&nbsp;any help with be appreciated greatly&nbsp;

boneyard · Answer

this article has some info, but as the tunnel is up it feels you want to look a step further:
https://support.f5.com/csp/article/K15344
a packet capture showing the traffic enters the tunnel would be best. if it does then it might be the other end (FortiGate) which doesn't respond for some reason. a capture on that side would also be useful to check if it arrives.

liefzimmerman · Answer

Booli&nbsp;- If your post was solved it would be helpful to the community to select *Accept As Solution*.This helps future readers find answers more quickly and confirms the efforts of those who helped.Thanks for being part of our community.Lief

Forum Discussion

NO PING between ipsec interfaces

2 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Understanding IPSec IKEv2 negotiation on Wireshark

Understanding IPSec IKEv1 negotiation on Wireshark

Passthrough IPSec with AFM

Application Programming Interface (API) Authentication types simplified

BIG-IP to Azure Dynamic IPsec Tunneling

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS