Action | Protokoll | Source | Port | Destination | Port | Gateway | Schedule | Description |
Pass | IPv4 TCP/UDP | LAN net | * | Ali | 443 | * | Allow Https of Ali | |
Pass | IPv4 TCP/UDP | LAN net | * | Ali | 80 | * | Allow Http of DMZ | |
Reject | IPv4 * | LAN net | * | DMZ net | * | * | Deny everything else in DMZ | |
Pass | IPv4 * | LAN net | * | * | * | * | Allow Internet | |
Pass | IPv6 * | LAN net | * | * | * | * | Allow Internet |
Yes it is sending the traffic back as I stated, that I can access if I disable the reject rule.
When the reject rule is active the label says "USER_RULE" and the interface is LAN.
When the reject rule is disabled the label says "let out anything from firewall host itself" and the interface is DMZ.