%PIX-3-305006: Regular translation creation failed

Unanswered Question
May 22nd, 2008


I'm getting this error even if the IP addresses used for NAT are correct, not network or a broadcast address.

%PIX-3-305006: Regular translation creation failed

My platform:

Cisco PIX Firewall Version 6.3(5)

Cisco PIX Device Manager Version 3.0(4)

My network is connected with MPLS links. If I ping from another site (another network) I get a reply and no error messages logged. Other networks reach my site from the inside interface via MPLS router. If I ping from inside to the inside address of the server, natted from the dmz, I get the above error logged and no response.

static (dmz,inside) MAIL_inside MAIL_dmz netmask 0 0


net remote : /24

net local : /24

dmz: /24

Remote network is connected via MPLS router.

I ping the ip address in local network from remote network, I reach the server, real address

If I ping from a machine in my local network the ip address of the server I can't get any response!

Hope my explanation is clear.

Any hint? Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vitripat Thu, 05/22/2008 - 07:42

I think you dont have a corresponding nat/global commands for network to go to dmz network.

Assuming that you have following nat statement:

nat (inside) 1

global (dmz) 1 interface (try this command)

If this does not help, please past outputs of "show nat" and "show global" commands.



Gian Paolo Boarina Mon, 05/26/2008 - 05:56

That's right, global(dmz) statement is missing.

Is it correct that with this configuration I can reach the natted IP from other networks, coming from a MPLS router connected to inside interface , but not from the network the inside interface belongs to?


This Discussion