My current LAN has VLANs for different purposes:

- Main LAN has access to internet, guest and IoT VLANs

- Guest VLAN has a access to internet, but not to main LAN or IoT VLAN

- IoT VLAN has no access to internet and only to MQTT broker on the main LAN

These VLANs are "carried" with EAP WLAN access points as different SSIDs.

Additionally, there are targeted firewall rules:

- IPv6 traffic is allowed between internet and main LAN

- IPv6 traffic is disabled on Guest and IoT VLANs

- IPv4 SSH and HTTPS are targeted to certain IP in main LAN

- From main LAN, IPv6 traffic to internet is disabled for certain MACs

IPv4 SSH and HTTPS forwarding support was found in the Omada SDN Software Controller 4.3.5 User guide, but I did not find instructions to other traffic rules.

Question: Is is possible to create these kind of traffic rules under Omada SDN controlled network?