Did you see any outgoing traffic from the machine, what is the route output?
You might try using iproute2 and making sure that traffic coming in goes out the same port/interface it came in on. I had a VPN server that was in a DMZ and I had incoming traffic but outgoing wasn't going out the same interface it came in so it was blackholing.
