on one of our active-standby unit(actually a guest on a viprion host) the guests are not able to ping each other HA interfaces. The HA works fine still. I have an hunch if this is anything to do on the F5 linux kernel iptables.
Any suggestions? Is there a way to check the iptables status in the Linux kernel?
First of can you process a tcpdump in standby member (in order to check if you receive something in you ha IP):
tcpdump -nni 0.0 host "IP HA active memeber"
Then from activ memeber ping IP HA of stadby memeber.
Did you use AFM? and check if packet filter is enable (Network ›› Packet Filters : General)