I believe that I'm experiencing a form of firewall reflection.
I have a single public IP on a wan interface with nat-masquerade to inside private interface
There is a webserver @ 192.168.1.31
port 80 requests on the public (126.96.36.199) interface are dst-nat to 192.168.1.31
this is working fine.
But when you browse to http://www.4stn.com which resolves to 188.8.131.52 and you are inside on
the private side you get "page cannot be displayed" but from anywhere else in the world it works fine.
How do you resolve this?