@viragomann Wow that was simple and much appreciated. I have come accustomed to leaving settings as default and not sure what options are available unless I am forced to look deeper. I will have to get more curious in the future and not take the defaults as gospel. Thanks again.

@SteveITS I may have stumbled on the answer. When I looked at status > Interfaces, my LAN was showing as "Down". This is because during initial setup years ago, I had associated each LAN with an interface port, and over time I had eventually moved to a managed switch. So this interface had been listed as "Down". Once I removed the interface port, the interface now shows as Up, and I'm getting DNS responses from my gateway.

@ryanrozich said in dhcpd.log file is ~10GB, filling my disk up every couple days and taking my network down: from wired to wireless networking That's original, as normally, it's the wireless connection that has a very limited (bad) connection, so it get reconstructed again and again, and that introduces a DHCP sequence on every 'link up'. If a wired connection does this : I'll bet you have a bad NIC on one side, or a bad cable. Or the printer has a very bad DHCP client implementation, like : forcing the the DHCP lease duration to 10 seconds or so. @ryanrozich said in dhcpd.log file is ~10GB, filling my disk up every couple days and taking my network down: However if this hadn’t taken down my home network I wouldn’t have known about it. Is there any alerting that I could enable in pfsense that would warn me of problems like this? That is actually the reason why pfSense is not some AI driven device that you power up, hook up and walk away. Like a switch. pfSense needs the human type of admin, in this case : you. And 99 % of the time you won't be looking at the dashboard, but you're somewhere in the Status menu. The most favorite one is all the log files. And no, I'm not kidding But I have a tip : when you add a 'new' device to your network, you should have a look at your log files (System, DHCP, DNS) a couple of times. Things can always go bad, cable get cut, wifi gets destroyed by the new AP the neighbor bought (or the new micro wave that "works just fine with the door open").

@SteveITS Thanks, I learned something!

@keyser yes. Captive portal with voucher service is enabled on guest SSID.

@fuckwit_mcbumcrumble I would lean more towards just setting the domains you know are going to return rfc1918 as private vs disabling rebind completely.

@donjcrbaustin The load balancing is probably not relevant but pfSense has to ask Windows for the AD domain info. See my response here: https://forum.netgate.com/topic/181593/migrate-lan-dns-to-pfsense/2 Notably Windows does not query DNS servers in order, it uses the "last known good" method.

@aagaag If this is Active Directory then I would leave DNS on Windows. PCs can update their own IPs there. If you want pfSense to handle DNS you can either: set Windows DNS to forward queries to pfSense configure a DNS domain override in pfSense to forward queries for your .lan domain to your Windows DNS server IP I am not aware of a way to import records.

@fireodo Got it! Thanks!

@tknospdr nice connection - jealous for sure.. .Love to be able get that here..

@MaxPresi said in Domain Override doesn't work: I tried DNS Forward too When ever you forward to ask a question, be it you forward everything or just a domain override - a domain override is a forward. You have to setup your rebind protection. Set the domain to private, if you forward and get back a rfc1918 address it is considered rebind and unbound will not hand that back to the client unless you set the domain as private, or turn off rebind protection. https://docs.netgate.com/pfsense/en/latest/services/dns/rebinding.html

@ht1608 said in Not receiving WAN IP via DHCP: However if I plug my Windows PC directly into the ONT it receives a public IP address straight away and the internet connection work. This is all on the latest version of pfSense Plus. Could your ISP be MAC-locking? If so try rebooting the ONT after connecting it to your pfSense.

Thanks @SteveITS for your answer The purpose of my question was whether it is possible to update the DNS (via DDNS) more frequently than the rate of change of the IP address in question (or the default update frequency of 25 days). I understand that this case is a corner case. Best

Hello @Gertjan, thanks for your answers. I finally solved my problem, my issue was that the reverse DNS zone needs to be exactly in the same range as the one defined in the DHCP server. In my previous configuration: My Bind DNS reverse a zone for all my subnets like: 2001:xxxx:xxxx:xxxxx/60 Each interface in my DHCP server configuration were define a subnet like: 2001:xxxx:xxxx:xxxxx/64 Now I have defined a reverse zone of each of my /64 subnets in my DNS Bind server and this solves my problem.

Do you by chance have any underscore characters in the host names?

@ik13 your welcome - hope your all sorted now. If not happy to help.

Final reply to this thread for anyone in the future who needs to setup something similar: I've put the full solution, including the NodeRed flow here: https://gist.github.com/Slyke/7d5b290f1d5695fdd79f5e0a08837c93