Hi Zaman,
If possible, I wouldn’t implement hairpinning like this (inside to inside NAT). It is easier to use a DNS server for hosts on the inside that resolves hostname of the webserver to the local IP address and another DNS server on the outside that resolves to the public IP address.
Some reasons I can think of why you still want something like this:
- You don't want to manage two DNS servers. This allows you to use one IP address to reach the webserver...doesn't matter if you are on the inside or outside of the network.
- You have laptops that are used on the inside and outside and have issues with DNS caching.
Rene