Thanks guys. It was an AP.

@PhilJ: Hi Apologies if this isn't the correct section but I wasn't sure where to post my question. If I have a web server running on my home network (that won't be accessed from outside) is there any way to give an internal website a URL instead of an IP address, using pfSense? For example, http://servername will go to 192.168.1.10. Thanks Go to System- Advanced- Firewall/NAT    uncheck "Disable NAT Reflection for port forwards"    Give that a try…

Guys, Guys, Guys.. I know how to do it using other cheap providers, but there are situations where we WANT to use static providers and yet want to dynamically change DNS servers. While it's an idea, using the CNAME option may violate security policies for some organizations. My idea would not cause that issue. I want a discussion on techniques on how to do this and make it a pfSense pachage that does this automatically. I have done it using scripts. but I dont know how to make packages, etc, and need to explore ways to code this right.

For those interested, I ended up resetting everything to defaults. Then I reconfigured all the static leases, NAT port forwards, DNS settings, etc… Everything is working correctly now.

It's probably just this: http://redmine.pfsense.org/issues/2212 Safe to ignore, but if you don't have any interfaces that get their IP from DHCP, you can just: killall -9 dhclient

The best you can do at the firewall level there is to require static ARP, which requires configuring DHCP reservations for every host. Not possible on a public hotspot. Even at that though, you're doing nothing to prevent hosts from causing problems by using static IPs. They'll create an IP conflict without touching the firewall and there's nothing the firewall can do about it.

My suggestion of bind was just to look up how to integrate it with AD, since there is lots and lots of documentation on that. You most likely could do the same thing with unbound on pfsense just need to create the required records, or for that matter just run bind on pfsense.  No gui for it like you get with unbound - but you can run anything that will run on freebsd on the pfsense installs.  Just might need to add some missing stuff, etc. I for for one can not stand openntp – so I run full blown ntp on my pfsense.

The pfSense GUI allows the same IP address to be assigned to different MAC addresses. In pfSense you could bridge your wireless LAN and wired LAN (then your laptop wired interface and wireless interface will be in the same subnet and can be assigned the same IP address). You might have good reasons for not wanting to bridge the interfaces. You haven't said that 192.168.1.100 and 192.168.3.100 are in different subnets - I assumed that. What is the network mask associated with those IP addresses? In summary, what you could do is (in DHCP) assign the same IP address to the wired MAC address and wireless MAC address of the laptop and (in DNS forwarder) assign names thinkpad, lenovo and laptop to that IP address. What the GUI interface to DNS forwarder doesn't allow is assigning the same name to two different IP addresses.

I have a virtual machine running that does radius/mysql/php as a payment management, PFSense is being used as an access controller. I would expect better uptime in the cloud for my "Management" virtual machine, then my single point of failure it is now.  If the internet goes down, then I don't care that I can't access the cloud because nothing can. Plus, if I where to mange several PFSense boxes being used as access controllers, the cloud should be better for what I want. I had not thought about my own package until I wrote up the post, so I do like that approach.  It should make debugging easier rather then changing the base system (only have my package to debug). Running the PFSense access controller stock with my DHCP package should be the easiest to accomplish what I want. wallabybob, thanks for the feedback.

@nutt318: when i ping my subdomain.domain.com its my public ip of my pfsense box That suggests the system doing the ping is NOT using the pfSense DNS forwarder OR you haven't configured the DNS override entry in pfSense DNS forwarder correctly. What DNS is used by the system doing the ping? The DNS override entries can take two or three parameters and there are two types (host override and domain override). You provided only two parameters and didn't specify the type, hence my request for clarification of what you had specified in the DNS forwarder entry.

I don't know about the default lease time working. My pfSense DHCP server has two static IP addresses for my netbook: one for the wired connection and one for the wireless connection. If I am using the netbook wireless interface then disable the netbook wireless connection, connect the netbook wired interface to a switch connected to the appropriate pfSense interface and enable the netbook wired interface then the IP address migrates from the netbook wireless interface to the wired interface. The netbook is running Ubuntu 10.04.

Yes, it would take alteration to the base system code.

Thanks for the hint. It is working in a dirty and crude way and i am able to proceed with testing. The request to members.dyndns.org is rerouted to my server ip but because of the faulty hostname the request is served from the default server rather instead of the planned domain. To be fully in bussiness i need the location and name of the configuration file(s) to change the server to send the request to. Even better would be the possibillity to add another client where the hostname can be freely adjusted.

I don't know about IP Alias, but if you used CARP instead, the MAC Addresses will be slightly different. Are you hard assigning the addresses even though they are in DHCP reservations?

@broncoBrad: I'm curious why does the Static IP Mapping allow for defining a hostname. Like say my windows computer has the name (hostname) jimbob-PC. So typically when pinging/connecting, I can just type ping jimbob-PC. So the DNS forwarder can be given a known name for the IP address. A name can be included in a DHCP request. I presume the name in the pfSense static IP mapping overrides any name supplied in the DHCP request. @broncoBrad: But if I want to create a static IP mapping for my windows computer and I were to assign it a hostname other than jimbob-PC, such as myworldnow, does that mean that pinging/connecting now uses myworldnow or can I still connect via jimbob-PC?? You can connect by whatever name is known to the name server you are using. If you are using DNS then the name needs to be known to DNS. If you are using Windows networking to browse shares then I believe you can use the DNS registered name(s) OR the name(s) configured in Windows networking.

I had this problem on a PfSense 2.0.1 as Hyper-V guest. Try if it helps to bring the card down and up again: ifconfig em1 down ifconfig em1 up dhclient em1 If it does, make a script that does that after booting. For me that helped; I wrote it up here.

nobody can't help me to start proxy server on pfsense 2.0.1 and setup a freedns as proxy server and to share internet trough it ?

Patch tested and working. Thanks for the quick fix!