Antoine Junod <toto@tots-ns.net> wrote: > I've also a FQDN managed by a machine not on the LAN. One of the > entry, say lan.mydomain.com is pointing to the external interface of > my firewall. The firewall redirect port 80 onto a machine of the > internal network. Access from outside works fine. Access from inside > don't. > The DNS query succeed and I'm able to ping from inside > lan.mydomain.com. But I'm not able to access lan.mydomain.com on port > 80 from inside. You're able to ping what, exactly? The address resolved from lan.mydomain.com? Remember this is your firewall, not the webserver. > What is the problem and how to resolve it? It's a NAT/Firewall issue. Either your firewall cannot double-NAT traffic from its internal interface back onto its internal interface, or else you've not allowed it to. Most domestic router/firewall devices cannot perform double-NAT; many (expensive) business quality devices can. Chris