Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)

%PIX-3-305006: Regular translation creation failed


I'm getting this error even if the IP addresses used for NAT are correct, not network or a broadcast address.

%PIX-3-305006: Regular translation creation failed

My platform:

Cisco PIX Firewall Version 6.3(5)

Cisco PIX Device Manager Version 3.0(4)

My network is connected with MPLS links. If I ping from another site (another network) I get a reply and no error messages logged. Other networks reach my site from the inside interface via MPLS router. If I ping from inside to the inside address of the server, natted from the dmz, I get the above error logged and no response.

static (dmz,inside) MAIL_inside MAIL_dmz netmask 0 0


net remote : /24

net local : /24

dmz: /24

Remote network is connected via MPLS router.

I ping the ip address in local network from remote network, I reach the server, real address

If I ping from a machine in my local network the ip address of the server I can't get any response!

Hope my explanation is clear.

Any hint? Thanks


Re: %PIX-3-305006: Regular translation creation failed

I think you dont have a corresponding nat/global commands for network to go to dmz network.

Assuming that you have following nat statement:

nat (inside) 1

global (dmz) 1 interface (try this command)

If this does not help, please past outputs of "show nat" and "show global" commands.



Re: %PIX-3-305006: Regular translation creation failed

That's right, global(dmz) statement is missing.

Is it correct that with this configuration I can reach the natted IP from other networks, coming from a MPLS router connected to inside interface , but not from the network the inside interface belongs to?

CreatePlease to create content