I said, and I quote: "Pay attention to the first paragraph and it's statement about the purpose of a DMZ." Nowhere in that does it say "take wiki as gospel" or that it is "fact". Why not, because I know better. But the first paragraph,
"In computer security, a demilitarized zone, named after the military usage of the term and normally abbreviated to DMZ; also known as a Data Management Zone or Demarcation Zone or Perimeter Network, is a physical or logical subnetwork that contains and exposes an organization's external services to a larger, untrusted network, usually the Internet. The purpose of a DMZ is to add an additional layer of security to an organization's Local Area Network (LAN); an external attacker only has access to equipment in the DMZ, rather than the whole of the network."
is actually rather accurate and a good description of a DMZ.
I also understand you have very limited experience in the computing industry. Just like I understand english is not your first language and that frequently leads to you misunderstanding and giving out some strange 'advice'.
I try to be patient with you but when you say things that are patently wrong, I have to point it out. The only thing I can thing of that's worse than not answering someone, is giving them misinformation. I'm not trying to pick on you or disrespect you and if you think about it honestly for a minute, when you give out good advice, I don't jump on you do I!? No, I keep my trap shut and go read another post.
I see you like to rely heavily on microsoft, as per your link above. I gave it a quick scan but not an in-depth one because it's very one-sided as most anything Microsoft publishes tends to be.
I stand firm in my conviction that the majority of businesses out there (including places that run MS and nothing else) use a DMZ for web, and any other external, servers as compared to port forwarding.
I feel quite confident most, if not all, web hosting sites also use a DMZ over port forwarding. Not only is it easier to setup, it's easier to maintain. It requires less administration to add/remove and it's safer.
I guess dummies say stuff like disable firewalls, use dmz and what ever it's safe. If they were so smart they'd have fixed your deal by now.
I'm not sure if you're directing this at me or not. I never said anywhere to disable firewalls. Conversely, I said use a DMZ which is segregated from a private (internal) network by a firewall.
As to having "fixed his deal" if I were on-site, I'd have had his web server up and running, in the DMZ, in probably less than 15 minutes. I can't make someone do something via a forum like this. It doesn't help when you're in there offering contradictory advice that confuses the OP and makes them unsure of who's advice to take.
All I know is that for the less-in-the-know, using a DMZ, that's available on their SOHO router, is a lot easier and safer than setting up a port forward to a web server and keep it inside the LAN.