I am working on a 515e with the following interfaces:
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 dmz security4
nameif ethernet3 webside security6
nameif ethernet4 backweb security8
nameif ethernet5 bakweb_domino security7
I have a windows box with 18.104.22.168/27 on the inside, and another windows box with 22.214.171.124/29 on the dmz, both with a tftp client.
I have configured the following static port redirection:
static (dmz,inside) udp 126.96.36.199 tftp 188.8.131.52 tftp netmask 255.255.255.255
In this way the tftp request from the inside network .130 to .133 are redirected to 184.108.40.206.Than I have also configured a:
nat (inside) 0 220.127.116.11 255.255.255.255
to exclude the .130 from traslation.
It works from the inside to dmz, but from dmz 18.104.22.168 to 22.214.171.124 it do not work, I have just added an acl to permit the traffic.
On the pix log i got the following message:
%PIX-3-305005: No translation group found for udp src dmz:126.96.36.199/1038 dst inside:188.8.131.52/69