Hi,
As this traffic is initiated form the SRX itself, we can see it hitting self traffic policy as it is originated from the zone junos-host :-
Aug 12 08:28:58 08:28:58.842689:CID-0:RT:Policy lkup: vsys 0 zone(2:junos-host) -> zone(7:untrust) scope:0 Aug 12 08:28:58 08:28:58.842689:CID-0:RT: 10.0.3.1/2048 -> 1.1.1.1/5756 proto 1 Aug 12 08:28:58 08:28:58.842689:CID-0:RT: app 0, timeout 60s, curr ageout 60s Aug 12 08:28:58 08:28:58.842689:CID-0:RT: permitted by policy self-traffic-policy(1)
We need to collect the same outputs from the host which is unable to ping.
Regards,
Sahil Sharma
---------------------------------------------------
Please mark my solution as accepted if it helped, Kudos are appreciated as well.