Solved

regular translation creation failed for icmp src inside

Posted on 2009-05-14
2
2,653 Views
Last Modified: 2012-06-22
Hi Experts
Ive been getting these errors on my ASA "regular translation creation failed for icmp src inside"
according to Cisco documentation this error can be caused if a device is sending ICMP packets other than echo or echo-reply the ASA drops such packets and produces this error. But the source ip is always a public ip eg.96.17.166.181 my src inside:172.17.2.10 is my core switch and the destination is allways a public ip. Here is the error.....305006  (source ip) 96.17.166.181  regular translation creation failed for icmp src inside:172.17.2.6 dst outside:96.17.166.181 (type 11, code 0). Any Help is greatly appreciated as allways
0
Comment
Question by:brucehunter
2 Comments
 
LVL 15

Accepted Solution

by:
Voltz-dk earned 250 total points
ID: 24391098
ICMP type 11 is time-exceeded, which is usually sent in response to trace-route.  So I guess the 96.17.166.181 is doing some traceroute into your network, and eventually your core switch is replying to that.  Then I guess you don't have a translation for that.  

Now you say core switch is .10 though, while log entry is .6 - I don't know which device is what, but still it's likely a traceroute.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco 5508 WLC software upgrade 2 38
Sonicwall SHA issue 4 29
Install SSL certificate on Cisco ASA 5506 6 29
exchange, activesync 2 12
Data breaches are on the rise, and companies are preparing by boosting their cybersecurity budgets. According to the Cybersecurity Market Report (http://www.cybersecurityventures.com/cybersecurity-market-report), worldwide spending on cybersecurity …
In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question