Sorry for the confusion, in addition to the deletion which you have done. I am suggesting adding the ip address of your default gateway on the service on eth4 to the screen displayed. So not just the interface but the correct forwarding ip address is in the policy.