OK
The Red connection goes to the internet, but not directly.
The green one has quite a few IP Aliases (too many?), but all in the wrong Network range…
The Firewall seems to be configured as such:
RED (Internet) is 192.168.1.11
GREEN (LAN) is 172.16.1.10
The Firewall doesn’t really know about the Networks 10.x.x.x and 192.168.0.x, they are not really configured Networks, only aliases. An Alias is like what your Friends may call you (Kris?), but it’s not in your official papers like ID or Passport.
Now, if any packet from 192.168.0.x get’s routed to the internet by the firewall, it becomes a “martian”. Recall that the firewall doesn’t really know about that network, it just happens to be connected to the same NIC, configured for 172.16.1.10. It can’t logically be possible…
If you want / need that kind of config (seems way to complex, and I happen to be a networking guru!), you need either more NICs in your Nethserver, or look into vLANs and a managed Switch!
That would work without such entries in the log and would be logically correct!
Maybe a quick explanation of what you’re trying to achieve with all those IPs on one NIC might help understanding your situation / problem?
My 2 cents
Andy