The return traffic from direct internet might be dropped by the edge if the kernel default route missing for the WAN interface.  

All SDWAN Software versions 

Edge will perform the source NAT and route the internet traffic direct via WAN link as per business policy. However, the return traffic will be dropped by edge, if the kernel default route is not installed for the internet WAN link. 

An incorrect interface configuration can lead to the removal of the kernel default route.

Example:


If a customer uses the subnet 10.10.10.21/30 for a routed interface i.e. GE3, the gateway IP should be 10.10.10.22. If the customer accidentally sets the interface gateway address to 10.10.10.20 or 10.10.10.23, then the default route via GE3 interface will be removed because those addresses are the network and broadcast addresses, which makes the configuration incorrect and impact the direct internet traffic. 

Correct the Gateway IP address on the interface to resolve the issue.

If the traffic is failing on the edge due to some other reason, kindly reach out to support team for further troubleshooting: https://knowledge.broadcom.com/external/article?articleNumber=323502