Easiest way to go is remove your dNAT rule, and add port forward on portforwarding tab.
It handles automatic firewall and hairpin stuff in background.
Hard way: Duplicate your dNAT rule on any internal interface , and you also need to add masquerade rule on LAN1.