UniFi LAN_LOCAL Firewall Rule Set - What is it?

Thank you this was helpful, was able to setup VLAN from accessing the gateway

So why is LAN LOCAL not included in the new Traffic Rules feature??

What I am really wondering is the difference between Lan Local vs Lan In. I see some guide using Lan In while others use Lan Local. I am not really sure what is what. I used Local to block my networks from each other but I am not sure if I should use Lan In.

Unifi makes the best switches and WAPs in the business, but their firewalls leave something to be desired. Their firewall rules are so confusing and don't have that many options. pfSense is a much better routing platform IMO. I swear by Unifi products, but I could never use one of their firewalls.

Hola, cómo puedo bloquear contenido para adultos. Desde el usg pro 4

Hi Willie great video as always. Have you seen any issues with site to site vpn between two udm pros? I can ping each side but won’t connect properly when accessing a remote ip through the web browser.

Good Morning Willie and thank you for the video!!!! Good One! OK, probably an easy question for you. I am starting to set up my UDM Pro Firewall rules and before I crash the system (yes I backed the system up) I am a little stumped. I want to use the standard supplied Guest rules but with one exception, I want the Guests to be able to print on my local printers. I have a VLAN set up with the printers (Printers - VLAN 20). I also have a VLAN set up as (Wi-Fi Guests - VLAN 30), but the current Wi-Fi Guests VLAN is just a subnet without any rules, as I have not linked it to the restricted UniFi Guests network. I believe I described that correctly. What is the rule that will allow for the Wi-Fi Guests the ability to print, but connect to nothing else except the Internet. Thanks again

Thank you for sharing so much of the knowledge you have gained through learning these various venders.

is it the LAN_LOCAL that would be used to redirect 53/dns?

the idea is to ensure that clients can't bypass the pihole for dns but still have internet access even if they change their dns settings

(hope that's clear )

So my various VLANs have access to these services by default and it's a good idea to block these if they have no valid reason to use them? I use VLANs mainly to segregate IoT and other devices. Thanks!

if you have SSH enabled on UDM include that in service ports.