let out anything from firewall host itself

[idscomm]

Hello,

Newbie with opnsense coming from Check Point, Untangle and pfsense so a bit of experience with Firewall. I am setting up my New OPNSense and found something odd happening .. I was hoping to shed some light with your help. Here is the scenario:

LAN and IOTVLAN on the same interface;
Internal DNS Servers on LAN;
Rule Created to Allow IOTVLAN to Reach DNS Servers;
Rule Description - Allow IoT Internal DNS Requests.

Now, without the rule, requests are blocked as expected in the log but when the rule is created and enabled, Logs shows the request on LAN not IoTVLAN and instead and the description shows coming from "let out anything from firewall host itself" which is an implicit rule and not my rule on the IOTVLAN...? When I try deactivating my Rule, the Log shows the requests being blocked again which tells me that MY Rule is the one filtering the request and not the Implicit one... Same thing happens for an ICMP rule on a different VLAN.........

Any idea what's causing this?

Thanks!!