I don't connect to internet with my netgear router anymore but with an ethernet modem alice-adsl pirelli.I get mail delivered regulary on my backend mail host .My lan is now so configured. ethernet modem --- linuxbox --- switch --- mailbox e www box. my iptables is: Code: IPT=/sbin/iptables ARGO="`ifconfig ppp0 | grep inet | cut -d : -f 2 | cut -d \ -f 1`" #ARGO is the hostname of my actual gateway box IF0=ppp0 $IPT -t nat -A PREROUTING -p tcp -i $IF0 -d $ARGO --dport 80 -j DNAT --to $WWW:80 $IPT -t nat -A PREROUTING -p tcp -i $IF0 -d $ARGO --dport 443 -j DNAT --to $WWW:443 $IPT -A FORWARD -i $IF0 -o $IF1 -p tcp --dport 80 -d $WWW -j ACCEPT $IPT -A FORWARD -i $IF0 -o $IF1 -p tcp --dport 443 -d $WWW -j ACCEPT I don't understand why http doesn't go trough since mail gets delivered. On the $WWW host this is the netstat: Code: tcp 0 0 192.168.1.4:80 0.0.0.0:* LISTEN 2342/apache2 tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 2342/apache2 And this the iptables: Code: ACCEPT tcp -- 0.0.0.0/0 192.168.1.4 state NEW tcp dpt:80 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:443 I'm testing with my laptop connected to dialup to connect to my site and i think it might be a matter of name resolution.I update to dyndyns.org my ip with ddclient configured to use as interface if=ppp0.All really look too strange my site is http://www.gabrix.ath.cx and is using mod-rewrite for http to https.I'm using pdnsd as local dns listening on all interfaces but still is not clear to me how to configure dns zones , if that's the problem !? from my laptop pc if i do a Code: #host www.gabrix.ath.cx it gives me an unknown host but Code: #host gabrix.ath.cx gives me my actual dynamic ip. Thanks !