It's probably a bad DOS protection mechanism, that has either the inbound or outbound net set too wide. Not uncommon, though a PITA and hard to distinguish from censorship (and why botnet blocklists should be public)