IF you want to do this without a DMZ (*not a good thing*) you will need to both DNAT and SNAT the connections from the LAN to the webserver.
Guess you guys are right. I will put the server in a DMZ, but that requires some work and thinking about my firewall script... I will try to find some spare time and when I have more problems, I will get back here :-) Thanks a lot for the fast responses!!!
