I'm working on a network restructure that has three geographical locations, but will share some services. Two of the locations have workstations, and one has only servers (in a CoLo facility). We will be running PfSense firewalls, and several hosts will provide services inside the LAN and through port-forwards to the internet.
It doesn't seem like it would be worth the hassle to run 4 different DNS views in bind, but it sounds like the load and configuration overhead in PfSense to utilize NAT Reflection would be considerable. What are the caveats to each, or is there another option?