diff --git a/docs/_releasenotes/2006.change.1.fix-ping-tests b/docs/_releasenotes/2006.change.1.fix-ping-tests
new file mode 100644
index 0000000000000000000000000000000000000000..e69de29bb2d1d6434b8b29ae775ad8c2e48c5391
diff --git a/k8s-supplements/ansible/test-roles/check-calico/templates/busybox-deployment.yaml.j2 b/k8s-supplements/ansible/test-roles/check-calico/templates/busybox-deployment.yaml.j2
index c8689a23f45aca7cec05cfb0bae20190fc86782b..e4be3ffe6c593390f38c997ebe15d60794a629d4 100644
--- a/k8s-supplements/ansible/test-roles/check-calico/templates/busybox-deployment.yaml.j2
+++ b/k8s-supplements/ansible/test-roles/check-calico/templates/busybox-deployment.yaml.j2
@@ -40,4 +40,9 @@ spec:
       - name: calico-busybox-test
         image: registry.gitlab.com/yaook/images/k8s-debian:main
         command: ["sleep", "infinity"]
+        securityContext:
+          capabilities:
+            drop: ["ALL"]
+            # Add NET_RAW to be able to ping
+            add: ["NET_RAW"]
       serviceAccountName: calico-busybox-test
diff --git a/k8s-supplements/ansible/test-roles/check-ipsec/templates/busybox-ping-job.yaml.j2 b/k8s-supplements/ansible/test-roles/check-ipsec/templates/busybox-ping-job.yaml.j2
index 6a0d5bd3cdba2cb69db7e39c8cc1980d41bb526e..88514539ef77966ae951298d43b52d83f992c767 100644
--- a/k8s-supplements/ansible/test-roles/check-ipsec/templates/busybox-ping-job.yaml.j2
+++ b/k8s-supplements/ansible/test-roles/check-ipsec/templates/busybox-ping-job.yaml.j2
@@ -32,3 +32,8 @@ spec:
       requests:
         cpu: 100m
         memory: 200
+    securityContext:
+      capabilities:
+        drop: ["ALL"]
+        # Add NET_RAW to be able to ping
+        add: ["NET_RAW"]