If you've ever wanted to stop your smart TV from scanning your entire home network or keep guests off your NAS, this walks you through segmenting a homelab into VLANs with actual firewall rules and trunk configs. It covers UniFi, pfSense, OPNsense, and MikroTik with real examples like mapping SSIDs to VLANs and setting up access versus trunk ports. The firewall rules are explicit about blocking IoT from trusted segments while allowing exceptions for things like Pi-hole DNS. It's dense but practical, assuming you have a managed switch and router that supports VLANs. Best used when setting this up for the first time or troubleshooting why your Ring doorbell can suddenly reach your file server.
npx skills add https://github.com/affaan-m/everything-claude-code --skill homelab-vlan-segmentation