Hello @funkylicious 

10.0.2.0/24 is the other lan i forget to mention it .

yes i made everything in place the routes , the rules and allowed ping in interface but i cant ping the other lan i connot even ping the firewall 

all the config i made is on the pictures 

i change the route here you are 

if you start a packet capture/tcpdump on the site-A fgt and a ping from site-B, are they reaching the gate or not? and on what interface is the traffic coming and is there a reply back and on what interface.

my ipsec monitor 

Hi @dingjerry_FTNT , @funkylicious 

I found the problem now i can ping my remote vpc from the  fortigate but from my vpc in the local lan as fortigate  i cannot reach the other vpc my policy is set i have two routes one 0.0.0.0 from internet zone and the other is thes address of my remote lan from vpn zone 

for the phase 2 of vpn i choosed 0.0.0.0/0 for all of them .

Hi @smartslima ,

It's so hard to read and understand your info when there is no punctuation.

Anyway.

"I found the problem now"

What is the problem?  

If you really need help, please provide the following info:

When you have the Ping issue, what is the source IP?  What is the destination IP?  You may use the IPs in the following sniffer packets capture command.

Can you run diag sniffer capture on both FGTs?

diag sniffer packet any 'host x.x.x.x and host y.y.y.y and icmp' 4

Before run it, you need to disable ASIC offloading in firewall policy if your FGT has NPU.

config firewall policy

edit <id>

set auto-asic-offload disable

end

Once you are done with the sniffer packets capture, you may enable the ASIC offload back.