Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.

I am experiencing a loss of ICMP sessions when I attempt to ping through the IPsec tunnel.

hello guys 

I have established a site-to-site (S2S) tunnel with two FortiGate firewalls, and this is my topology.



then the tunnel work but no perfectly it can ping juste from the interface of the lan to the other lan interface (and vise verca) (exmple : ping from to it works but if we want to ping from the to the other host the ping issue )
after some time of troubleshooting i find out that the icmp session losed in evry icmp request 

so guys  what is the solution for this problem please !


@smaruvala  here an other test that i have done also 
i try to ping from the lan interface of the fortugate FW-A ( to the host to ensure that the packet will arrived to FW-A because when we try to ping from lan interface to the other lan interface of the frotigate the ping work and pass throw the tunnel ( to 

so write in the terminal of the FW-A like this  

FW-A # execute ping-options source

FW-A # execute ping
PING ( 56 data bytes

--- ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss




so this snapshot was taked in fortigate FW-B  to capture the packet arrived 



here we can say that from the FW-B he can't find a route to the host or what ????


also i disabled windows firewall to allow ping


Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Top Kudoed Authors