SRX

Currently all of my remote sites have IP Sec tunnels to AWS and all clients are pointing DNS to a central DNS pool in AWS.  We are needing each site to have one custom host record different than what's being served by the central DNS.   I saw that the SRX can run as a proxy (Configuring the Device as a DNS Proxy)  but can it also host custom records?

ie,

at Site A controller.site.local should get DNS from the Site A SRX and resolve to the ip of Controller A

at Site B controller.site.local should get DNS from the Site B SRX and resolve to the ip of Controller B

etc. 

Yes, this should work:

set system services dns dns-proxy interface ae0.10
set system services dns dns-proxy default-domain * forwarders 1.1.1.1
set system services dns dns-proxy default-domain * forwarders 8.8.8.8
set system services dns dns-proxy cache my.domain..com inet 192.168.3.200
set security zones security-zone TRUST interfaces ae0.10 host-inbound-traffic system-services dns

-dsd