I added a general “mDNS allow” rule to internal network firewall rules, as this helps to make Apple HomeKit working (having my Apple TVs and Homepods moved to VLAN 210).
.
In addition, I had to change AP configuration of VLAN 215’s corresponding SSID “…G#”, too, to make HomeKit running by disabling “Guest Protect” → “Block All Private IP” setting (was to much restricted as the HomeKit devices need to be able to connect to each other):
I assumed that the “Layer 2 Isolation setting” prevents WIFI clients (like HomePod) to connect to wired LAN clients (like Smart Home Bridges e.g. Philips Hue) in VLAN 210, but leaving it enabled didn’t lead to issues with smart home. Any advice?
Inter-VLAN routing needs to be enabled for VLAN 210 → see the corresponding LAN settings of VLAN 210 as maybe helpful example for you:
