I hate to dig up this old thread, but I'm having a similar issue to this and haven't been able to find a solution. The solution described here isn't entirely clear to me, either.
This is UTM 9 on AWS.
The route table on my Windows machine looks like this:
Active Routes:
Network Destination Netmask Gateway Interface Metric
169.254.169.250 255.255.255.255 10.1.2.5 10.1.2.10 5
169.254.169.251 255.255.255.255 10.1.2.5 10.1.2.10 5
169.254.169.254 255.255.255.255 10.1.2.5 10.1.2.10 5
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 10.1.2.5 Default
===========================================================================
In the UTM I've created a policy route for any internal host with destination 169.254.169.0/24 to use 10.1.2.1 as the next hop. I can actually see data when I browse to the meta-data page, but I'm still seeing thousands of these blocked entries every day.
What am I missing?