Cisco Pix firewall

[Ted]

I'm trying to set up a static nat translation through a pix 515e firewall....

outside firewall interface is 212.xxx.xxx.236/27 inside 10.1.0.1/8
I'm trying to do a nat from 10.0.0.78 to 212.xxx.xxx.230

I've tried setting this up from the pdm, but it doesn't seem to work.

command line settings are

access-list outside_access_in line 1 permit ip any host 212.xxx.xxx.230

static (inside,outside) 212.xxx.xxx.230 10.0.0.78 netmask 255.255.255.255 0 0

Without the translation rule, I can ping or browse to external addresses
With the rule, using 'debug icmp trace', and a ping to google, I get

ICMP echo-request from inside:10.0.0.78 to 216.239.37.99 ID=512
seq=48900 length=40
26: ICMP echo-request: translating inside:10.0.0.78 to outside:212.xxx.xxx.230

but no reply, and no external access. - there's also no reply from an external address.

I know the 236 address is live, and available and I'm pretty damn sure that the 130 address is too(it's been used before, and is in a batch of addresses we have)- although I have a call in with our ISP to confirm this.

Have I forgotten anything? What am I doing wrong?

Any takers??