Hey, wait - aren’t you the same guy who posted a solution for this issue just a few days ago?
As for me, after reading this, I simply decided to place my HA to the IoT VLAN, instead of fiddeling about with firewall rules, which solved this issue for me.
Also a Unifi user.
Edit would like to thank you for this hint. 