=====802.1q VLAN=====
I would much rather use VXLAN. But switches that provide VTEP support natively are too expensive, so I have to make do with 802.1q, which is awful and I hate it.

VLAN 0 is the same as untagged traffic, except it isn't, and nobody can explain why.

VLAN 1 is the "default" whatever the fuck that means.

VLAN 4095 is "all VLANs" somehow but again, what the fuck does that mean?

====VLAN-aware Linux bridges====
FIXME Figure this out and write the section. Right now I'm just pasting commands I found on other blogs, most of which feel AI-written. I haven't found the actual documentation yet.



====VLANs on (my) Ubiquiti hardware====
I'm looking for CLI documentation for the switches because the web-based control software is so irritating and limiting. It does seem to "work" for making port profiles and assigning ports to VLANs. The air-quotes are because they're not doing what I expect them to do, or think they should do.

PEBKAC?

Here's some CLI stuff I found on a [[https://blog.wains.be/2020/2020-10-05-libvirt-trunk-vlan-vm/|blog post]].

> My switch is a Ubiquiti EdgeSwitch 24 Lite. Adjust accordingly to your gear."

  enable
  configure
  interface 0/23
      description NAS
      switchport mode trunk
      switchport trunk allowed vlan 1,10,20,30
      switchport trunk native vlan 10
      exit

> The native VLAN is my home network, so any traffic coming from my NAS or from a VM using the macvtap enp8s0 device should fall within the home VLAN.

We need to configure the host with VLAN aware bridges for other VLANs.