I'm testing a fairly simple static NAT setup and I can't seem to get it working.

Here's the situation. I have two ASA5510 working in Active/Standby mode. It's all good, everytihng works there. This high availability cluster is connected on the inside interfaces to switches and on the outside interfaces to routers. All is working as far as IP connectivity is concerned. Here the IP setup:

interface Ethernet0/0
 nameif outside
 security-level 0
 ip address 10.1.5.2 255.255.255.0
!
interface Ethernet0/1
 nameif inside
 security-level 100
 ip address 10.1.6.1 255.255.255.0
!
object network obj-10.1.6.10
 host 10.1.6.10

object network obj-10.1.6.10
 nat (inside,outside) static 149.13.0.21

So when I go on the routers, connected to the outside interfaces, and I send some traffic subject to the configured NAT - it fails:

BB2#ping 149.13.0.21

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 149.13.0.21, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)

But on the ASA - the traffic is "matched" but not translated...

Rack1ASA2/NAT# show nat

Auto NAT Policies (Section 2)
1 (inside) to (outside) source static obj-10.1.6.10 149.13.0.21
    translate_hits = 0, untranslate_hits = 5

So why the NAT rule does not perform any translations? Do the security levels on the ASA play any role in that?

When I initiate traffic from inside to the outside - it also fails, but there are no hits what so ever on the NAT rule.

Am I missing something?