ACL’s can accomplish it if that’s your only goal, but there are other benefits of vlans for security and privacy. For example an ACL works at layer 3, so it won’t block other nosy devices on your network from seeing everything else via layer 2 and then reporting back what it finds. VLANs also make it easy to use different security policies for each network if you do any sort of IDS/IPS as I do.
Yeah sorry I wish I had time to really expand this out into a nice guide, but unfortunately I don’t right now. There aren’t any comprehensive guides that I’ve found, but it’s still worth a look. Everybody’s network is a little different in terms of setup and equipment. Hopefully with the basic ideas I’ve shared it can point someone in the right direction to figure out a working solution in their environment.
Also, if you agree that this change by Bambu is ridiculous, make sure to let them know how you feel at [email protected]
I’ve edited the post to add a note about an outbound rule possibly needed in the printer VLAN. If the printer VLAN is locked down, it could be blocking the advertisement before the UDP Relay gets a chance to see it. This should fix that. See if works for you