On Sun, 3 Aug 2025 12:43:06 -0400 Jeffrey Walton <[email protected]> wrote:
> pfSense switched to KEA and it was kind of a disaster for folks who > let the firewall handle DNS and DHCP. It seems KEA on pfSense does > not update DNS records with DHCP registrations, so name resolution > slowly breaks as records expire. If you plan on using DNS as your > single source of truth, then be careful of using KEA. Thanks for that warning. I have not yet set up DNS (bind9, also from ISC) on my test network, but will add that to my list. I have no idea which version of kea is on pfSense. kea on Bookworm is 2.2.0-6; 2.6.3-1 on trixie. ddns is an add-on for kea. I am using trixie for this. We will see. -- Does anybody read signatures any more? https://charlescurley.com https://charlescurley.com/blog/
