Solved

regular translation creation failed for icmp src inside

Posted on 2009-05-14
2
2,817 Views
Last Modified: 2012-06-22
Hi Experts
Ive been getting these errors on my ASA "regular translation creation failed for icmp src inside"
according to Cisco documentation this error can be caused if a device is sending ICMP packets other than echo or echo-reply the ASA drops such packets and produces this error. But the source ip is always a public ip eg.96.17.166.181 my src inside:172.17.2.10 is my core switch and the destination is allways a public ip. Here is the error.....305006  (source ip) 96.17.166.181  regular translation creation failed for icmp src inside:172.17.2.6 dst outside:96.17.166.181 (type 11, code 0). Any Help is greatly appreciated as allways
0
Comment
Question by:brucehunter
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 15

Accepted Solution

by:
Voltz-dk earned 250 total points
ID: 24391098
ICMP type 11 is time-exceeded, which is usually sent in response to trace-route.  So I guess the 96.17.166.181 is doing some traceroute into your network, and eventually your core switch is replying to that.  Then I guess you don't have a translation for that.  

Now you say core switch is .10 though, while log entry is .6 - I don't know which device is what, but still it's likely a traceroute.
0

Featured Post

What, When and Where - Security Threats from Q1

Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others.  This conference is aimed mainly at government agencies.  So it addresses the various compli…
Make the most of your online learning experience.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

622 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question