The easiest way to do this is probably having a bridged DMZ Interface and a bunch of other interfaces (or maybe vlans) for the other internal networks. in This scenario one of the public IPs will be assigned to the pfSense WAN and will be used for natting the other private subnets behind it and the other IPs can be used for the Servers in the DMZ.

Do you have anymore suggestions for me hoba, or anyone else..  I'm almost positive it's not related to the primary dns suffix (not to doubt your expert advise).  It handles fine when communicating through a cheap router, i.e. linksys, etc.  Only acts screwy when passing through pfsense to talk to the lan interface.

It's not possible at this time, it's something I'm checking into this week though.

So there is not option to have pfsense' DNS server/forwarder assume I'm putting in an FQDN if I have at least 1 period somwhere in the query but not necessarily at the end (like google.com)?

@rsw686:

Heres one thing to check. In Network Connections right click on the local area connection select properties. Select Internet Protocol TCP/IP and click properties. In that dialog click advanced. On the DNS tab make sure "register this connection's addresses in DNS" is checked.

On all machines, "Register this connection's addresses in DNS" is checked. Also, the XP firewall is enabled on all of them.

Services –> DNS-Forwarder

why not just try it?

@videoman:

There is also djbdns, but the license would not allow pfSense to distribute the software, ….
-VideoMan

Hmmm - I Tried to find any licensing info on djbdns (of which tinydns is a sub-set of the djbdns toolset) and did not find anything - do you have a URL link or pointer to the license info???

gm…

Thanks I will give that a try.  My ISPs DNS servers don't seem to be very reliable at certain times of the day.  And they don't seem to care after I contacted them repeatedly.

this might be a bit late to respond, but with comcast modems if you want to switch routers… Unplug the modem, and plug it back in. That is all that it takes.

I'm using OpenDNS.  I sent them an email regarding this and got a reply from John Roberts (VP):

Hmmmm… since we don't use dynamic DNS for authoritative DNS, I'm not sure this applies.

We accept dynamic IP updates using dynamic DNS API, but from the screenshot, it doesn't appear that pfSense supports all the same fields we use.

http://www.opendns.com/support/category/124

It would be nice to know the proper settings, if anyone has a clue.  Or if this could be added to the core that would be great!

That is the way DJBDNS works.  You need another daemon.

Thanks for the reply. I managed to find the problem, our ISP DNS server was having problems. Changed to OpenDNS as forwarder and now its working.