Location Block vs. Drop packets from and to hostile networks (listed at Spamhaus DROP, etc.)

Security Firewall Rules
12

@pmueller -

It is a good thing Sam suggested testing! There may be an issue. IN=red0 is good.
But there is no IN= info for green0. (I did not test blue or orange).

Add a report to bugzilla?

Apr 14 11:02:49 ipfire kernel: DROP_HOSTILE IN=red0 OUT= MAC=00:0x:x9:5x:x9:x8:00:01:5x:67:4x:46:08:00 SRC=194.nnn.nnn.nnn DST=73.nnn.nnn.nnn LEN=40 TOS=0x00 PREC=0x20 TTL=232 ID=62944 PROTO=TCP SPT=45675 DPT=5998 WINDOW=1024 RES=0x00 SYN URGP=0 
Apr 14 11:02:55 ipfire kernel: DROP_HOSTILE IN=red0 OUT= MAC=00:0x:x9:5x:x9:x8:00:01:5x:67:4x:46:08:00 SRC=89.nnn.nnn.nn DST=73.nnn.nnn.nnn LEN=40 TOS=0x00 PREC=0x20 TTL=237 ID=53917 PROTO=TCP SPT=56804 DPT=45635 WINDOW=1024 RES=0x00 SYN URGP=0 
Apr 14 11:02:56 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=19320 DF PROTO=TCP SPT=46056 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:02:57 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=19321 DF PROTO=TCP SPT=46056 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:02:59 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=19322 DF PROTO=TCP SPT=46056 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:03 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=19323 DF PROTO=TCP SPT=46056 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:11 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=17225 DF PROTO=TCP SPT=46058 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:12 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=17226 DF PROTO=TCP SPT=46058 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:14 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=17227 DF PROTO=TCP SPT=46058 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:18 ipfire kernel: DROP_HOSTILE IN= OUT=red0 SRC=73.nnn.nnn.nnn DST=45.9.148.44 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=17228 DF PROTO=TCP SPT=46058 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 
Apr 14 11:03:59 ipfire kernel: DROP_HOSTILE IN=red0 OUT= MAC=00:0x:x9:5x:x9:x8:00:01:5x:67:4x:46:08:00 SRC=194.nn.nn.nnn DST=73.nnn.nnn.nnn LEN=40 TOS=0x00 PREC=0x20 TTL=232 ID=45697 PROTO=TCP SPT=45675 DPT=3623 WINDOW=1024 RES=0x00 SYN URGP=0

EDIT: same issue with blue0

EDIT2: added bug report:
https://bugzilla.ipfire.org/show_bug.cgi?id=12850