Thank you very much for your answer. Yes, the default gateway is the internal IP of the fortigate unit.

I have tested pinging the QNAP after turning off port forwarding from an outside machine to no avail. It responds to pings from inside the network. The webaccess is http. There is a https option, but I wanted to test this first. I don' t quite understand what checking for local source addresses means, could you elaborate? The administration from inside the network works flawlessly. The depressing thing is that I got it to work when no one was using it, but as soon as interest arose from my boss, the darn thing stopped working. Is there some option to somehow completely turn off the firewall for specific IPs? EDIT: I can in fact ping it from the outside. Some packets are lost, some say " Zielnetz nicht erreichbar" wich means something along the lines of target network not available. So I can at least tell it' s there. :D

I cannot find anything regarding a check for local source addresses. Two packets timed out, the remaining two said " Zielnetz nicht erreichbar" (Target Network not reachable). EDIT: The answer is coming from the correct IP by the way. Actually I have two external IPs, only one of them updates dyndns though, so this shouldn' t be a problem I assumed. Stupid? :)

The default gateway is set correctly. Since I don' t work with subnets, the subnetmask 255.255.255.0 should also be correct? I don' t really know where to check subnet settings on the fortigate.