Build a Safer UniFi Setup with VLANs, Zone-Based Firewalls, and Smart mDNS Rules

Use UniFi insights to find denied connections and troubleshoot rules, then tune VLANs so cameras and IoT cannot touch sensitive devices.
Ars Technica

Prevent VLAN to VLAN access on Cisco switch

Setup an access list on the router allowing them to communicate in the first place. If that is the 4500 set it up there.
Ars Technica

How bad is having tagged VLAN on an access port? | Ars OpenForum

At home I generally set all switches with a native VLAN of the main LAN and tagged to the guest LAN. I know this is probably not optimal, but I'm wondering how bad it really is? I get that it probably ...