[ttpm123]

A NAT technique I have used successfully is suddenly failing and I cannot find the loose thread.

DMZ servers use RFC 1918 space.
DMZ servers are static NAT'd to addresses in a public subnet for this purpose.

The NAT rule translates traffic from a vendor's four /25 addresses between the server's public and private IPs.

Policy restricts ports.

This has worked many times until now. Logs show the vendor hitting the public address and being dropped on the cleanup rule. XlateScr and XlateDst are null. This is why I think NAT is failing for some reason.

I cannot see why this is failing and appreciate any assistance.