This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew

Unable to ping to Secondary ISP IP from Primary ISP IP

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Unable to ping to Secondary ISP IP from Primary ISP IP

URONMAPU
L1 Bithead

‎05-27-2026 02:47 AM

Hello Everyone,

 

I'm using two internet connections: a primary ISP and a secondary ISP.

 

Is there a way to ping the public IP address of the secondary ISP from within the local network?

 

I would appreciate it if you could share the configuration steps.

 

Thank you so much!

0 Likes Likes
3 REPLIES 3

Raido_Rattameister
Cyber Elite

‎05-29-2026 11:06 AM

Only if you have different ISP links in configured in different virtual routers.

 

If both ISP links are in same virtual router and you ping using ISP1 IP towards ISP2 next hop then this packet will go out from ISP2 link using ISP1 IP.

ISP either drops this (if their filters are set correctly due you spoofing source IP that they did not give you) or will receive it but send reply packet towards ISP1 (causing asymmetric traffic).

Principal Architect @ Cloud Carib Ltd
Palo Alto Networks certified from 2011
0 Likes Likes

OtakarKlier
Cyber Elite
In response to Raido_Rattameister

‎06-04-2026 09:36 AM

Hello,

Are you trying to ping the IP of the PAN interface that has the IP assigned or the ISP's next hop IP address to check if its up?

 

Regards,

0 Likes Likes

URONMAPU
L1 Bithead

‎06-04-2026 07:48 PM

Hello @Raido_Rattameister , @OtakarKlier 

I have two ISP connections. Each connection passes through a media converter operating in bridge mode and is connected to a dedicated interface on the same firewall.

The two ISP links are configured in a failover setup, where the Secondary ISP serves as a backup for the Primary ISP. If the Primary ISP link becomes unavailable, traffic is automatically switched to the Secondary ISP link. Under normal conditions, all Internet traffic is routed through the Primary ISP.

I would like to monitor the health and availability of the Secondary ISP link even while it is in standby mode. Specifically, I am looking for a method to continuously send ICMP echo requests (ping) through the Secondary ISP path while the Primary ISP remains active.

My goal is to verify that the Secondary ISP link is operational and ready to take over in the event of a failover. If the monitoring ping fails, it should indicate a potential issue with the Secondary ISP connection.

I would appreciate any recommendations or best practices for configuring this type of monitoring on the firewall.

0 Likes Likes
  • 442 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks