> > Can anyone say from experience whether it's 'within scope' to keep pfSense > as the DHCP/DNS? In other words, is it feasible to have 2K8 server turn to > pfSense via something like DHCP relay? Never played with DHCP relay. > > Hi Karl,
We are doing exactly this. I have my Win2008 server acting as DHCP and DNS. I have multiple scopes for each of the connected adapters (pfSense DHCP disabled on all interfaces). For every connected LAN that is not on the same subnet connected to where the DHCP server is physically located, I use the relay to hook up to the appropriate DHCP scope. I enable the relay on the interface, and specify the IP address of the windows DHCP server and it just works. But you only need relay if you have multiple connected subnets. I've never done this with VLAN's but it should not matter. If you have a single LAN interface and hence single subnet it should really be just that simple. You can even enable things like NAP after that (we have essentially 2 subnets, one less trusted and one trusted, and you get dumped into the individual subnet based upon your "health"). If you need specifics on multiple subnets let me know. Cheers, Tim
