Network vlan sonos - ArveVM/MyAssistedHome GitHub Wiki

Why?

Separate vlan for Sonos/Symfonisk devices,,, since they require internet and is a device that has some firmware and a supplier that can push firmware - it is safest to do some network segregation

What?

Separate vlan for Sonos-type-devices,, separate port-definitions and firewall rules for that particular manufacturers devices, so it is easier to control what is alowed:

• Vlan has internet access (for firmware etc)
• Multicast
• Allow established and related (other vlans see and can contact)
• port 1400 and 1443 allowed to HA-server

Drawback:

Sonos-app and control of sonos-devices through the app is only available in the new vlan,, so not from my normal mobile/pc vlan However, Spotify and HA see the sonos-devices on the new vlan just perfectly

How?

Wlan; Anfield with PPSK to vlan; IoT-sonos vlanID=21 portgroup; IoT-sonos ports=1400, 1443

Source: https://www.home-assistant.io/integrations/sonos/#network-requirements gratitudes to KennethM for vlan tutorials and troubleshooting

Setup in UnifiDreamMachinePRO:

Network:

Port-group:

Firewall-rules: .. Allow:

..then Deny:

History/things to do:

History:

2023-12: created vlan, ppsk/wlan and group/firwall-rules. Test and verify