Hi,
As you are able to reach 1.1.1.1, it looks like an issue with the source NAT. Please check you have configured NAT for the subnet 192.168.2.0/24, either interface based NAT or policy based Src-NAT so that the replay can route back to the firewall IP.
Thanks and Regards,
Pradeep Kumar M