Looks like your interfaces are reversed (normally your external interface will be eth0):

EXTIF="eth1"
INTIF="eth0"

So the preouting rule should be:

$IPTABLES -t nat -A PREROUTING -d yyy.yyy.yyy.yyy -i eth1 -p tcp -m tcp --dport 80 -j DNAT --to-destination xxx.xxx.xxx.xxx

Looks like you made the proper modifications to the forwarding rules already, so they should be ok. Also make sure that the internal webserver's firewall is not blocking requests and that the webserver application (Apache, tux,etc) is up and running.

I tried to connect to my webserver in the network, and it's fine. But when i try over the internet, it doesn't work.

If anybody could help me. it would be very helpful. I did what everyone told me to do

I replaced these commands in the script:

#Enter configuration rules here
$IPTABLES -t nat -A PREROUTING -d yyy.yyy.yyy.yyy -i eth0 -p tcp -m tcp --dport 80 -j DNAT --to-destination xxx.xxx.xxx.xxx

$IPTABLES -A FORWARD -i eth1 -o eth0 -p tcp --dport 80 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT

$IPTABLES -A FORWARD -i eth0 -o eth1 -j ACCEPT

$IPTABLES -t nat -A POSTROUTING -s xxx.xxx.xxx.xxx -j SNAT --to-source yyy.yyy.yyy.yyy


By these:

$IPTABLES -t nat -A PREROUTING -d yyy.yyy.yyy.yyy -p tcp --dport 80 -j DNAT --to-destination xxx.xxx.xxx.xxx:80

$IPTABLES -A FORWARD -i ppp0 -o eth0 -p tcp --destination-port 80 -m state --state NEW,ESTABLISHED -j ACCEPT

$IPTABLES -A FORWARD -o ppp0 -i eth0 -p tcp --source-port 80 -m state --state ESTABLISHED -j ACCEPT

where xxx.xxx.xxx.xxx is my internal address
where yyy.yyy.yyy.yyy is my internet address



thanks for all the help you did give me.