When you say you did a port scan, was this from inside or outside the firewall ?
There does seem to be anything wrong with the config you posted so perhaps if you could post the full config (minus any sensitive information).
Other things to check
1) is the 192.168.50.0 network directly attached to the pix. If not do you have a route to that network.
2) The vendor IP address will need to be routed back out from your network. Is the default gateway on 192.168.50.50 pointing to the pix, if not do you have other routing in your network that would send the reply traffic back to the pix.
I was thinking the config was correct as well. I already did this same thing for another vendor just using a different port and it works for them. I will try to ssh to the vendor device and go from there.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...