NO PING between ipsec interfaces

Question

hi all .i came across strange issue -i have multiple ipsec tunnels on my F5 configured with&nbsp; ipsec interface ips on both ends&nbsp;all remote ends are fortigate devices -on all tunnels i can ping the remote tunnel ip with no issue&nbsp;but i have one tunnel (which is up) that i cannot ping the other sides ipsec intrface&nbsp;how can i debug this with cli ?&nbsp;any help with be appreciated greatly&nbsp;

boneyard · Answer

this article has some info, but as the tunnel is up it feels you want to look a step further:
https://support.f5.com/csp/article/K15344
a packet capture showing the traffic enters the tunnel would be best. if it does then it might be the other end (FortiGate) which doesn't respond for some reason. a capture on that side would also be useful to check if it arrives.

liefzimmerman · Answer

Booli&nbsp;- If your post was solved it would be helpful to the community to select *Accept As Solution*.This helps future readers find answers more quickly and confirms the efforts of those who helped.Thanks for being part of our community.Lief

Forum Discussion

NO PING between ipsec interfaces

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Understanding IPSec IKEv2 negotiation on Wireshark

Understanding IPSec IKEv1 negotiation on Wireshark

Application Programming Interface (API) Authentication types simplified

Passthrough IPSec with AFM

About IPsec Interface

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS