OPNsense firewalls can also function as DHCP servers. IP addresses are then assigned directly at the point where network separation and packet filtering take place. The firewall manages all active hosts, controls their assignment to VLANs and segmented networks, and documents each allocation in its own lease tables.

Source