In this setup the first thing to verify is routing.
Assuming you source nat all coming out of the SRX then the upstream devices should send traffic to the correct interface on the upstream side of the SRX.
With the icmp traffic check the sessions on the SRX during or very shortly after the traffic
show security flow session source-prefix x.x.x.x destination-prefix y.y.y.y
this should show the nat occuring on the traffic session.
Run the same test then for the non-working traffic.
Does the session exist at all?
Is the nat working?
Is there return packet count?
We basically need to verify that security policy, nat and routing get the packets through the system. More gory details are here.
https://kb.juniper.net/InfoCenter/index?page=content&id=KB16110