I’m at point when I’m ready to separate IOT from the rest of network.
I have 2 Unifi APACLRs and Unifi controller running as HA add-on (on RPi4).
APs are covering my house for all devices (IoT, notebooks, mobiles etc). APs are connected to EdgeRouter which also provides routing to Internet.
Currently all devices incl APs are configured to appear in a single network.
Since I consider dedicated SSID for IoT I have to create VLAN for it.
And this is when started to ask myself: once I move HA to IoT VLAN, I will loose ability to manage APs from HA Unifi Controller addon. Am I right?
Is there anyone over here who had to manage similar sitution? What are possible ways out?
PS. I’m not sure it’s correct subforum. Feel free to move it if there is better place for it.
You may just move the APs to the IoT vlan too, or leave where they are but you will have to allow the HA ip on IoT vlan to access your intranet vlan (maybe you will loose the automatic “adopt” feature).
I have moved all iot devices (mostly shelly) to iot vlan. HA, APs and TV remained in my default network.
Also to seal default (original) network even more, I created guest vlan.
In fact there is where benefits of using mqtt become real. Communication is allowed to shelly devices to mqtt. HA itself and mqtt have no rights to communicate with shellies
But I can’t get the unifi addon in HA to connect.
I don’t know if I should make some firewall/portforwarding between main and IOT vlan.
Can’t find anything about this setup in any guides