Chances are that if the firewall is paranoid enough to only allow HTTP traffic in then it's going to allow access to the official webserver only. This is also not taking account the problems caused by NAT or masquerading.

- Trevor