Adding to this:-
Can you share your source and destination IPs used in this transaction and the corresponding routing?
I want to ensure that this is not getting dropped at any other stage apart from policy in the flow, for ex reverse route lookup etc.
In the current setting our logging will only work if the traffic is denied by policy.
Regards,
Anand