Configuring VLANs, OPNsense, and Unifi in My Network

Hi everyone,

I’d like to share my current network setup and get some detailed help with it. I tried to install OPNsense, a firewall, and VLANs in my network and hit many roadblocks. So I ordered more and more parts (NIC card, 2x Ubiquiti U6E, better Proxmox server, managed poe switch) … this is going for days now and every time I hit a roadblock i had to order hardware…
To be honest, I think this project is too big for me without guidance. I’m not even sure where I need to start now. Maybe someone has fun with networking and would like to talk about what the next steps are on Discord or something.
Current Network Setup
Hardware:

Router: Fritzbox (192.168.1.1) – Currently acting as the DHCP server.

Proxmox Server: (192.168.1.11)

    Runs several virtual machines and services, including:

        AdGuard Home: (192.168.1.151)

        DDClient: (192.168.1.152)

        Nginx Proxy Manager: (192.168.1.154)

        Nextcloud: (192.168.1.156)

        Screego: (192.168.1.157)

        TeamSpeak3: (192.168.1.158)

        Emby: (192.168.1.158)

        Home Assistant: (192.168.1.159)

        Trilium: (192.168.1.160)

        iSpy: (192.168.1.161)

        Wireguard: (192.168.1.162)

        OPNsense: (192.168.1.163)

        Unifi Network Controller: (192.168.1.164) – Manages the access points.

        MyJDownloader: (192.168.1.165)

        Checkmk: (192.168.1.166)

Access Points: 2x Ubiquiti U6E, configured with a single Wi-Fi SSID and password.

Switch: Managed PoE switch (unconfigured but connected).

NAS: Synology NAS (192.168.1.3).

IoT Devices: Around 25 devices that connect primarily to Home Assistant.

Proxmox Configuration:

The server has two RJ45 ports. Currently, one is connected directly to the Fritzbox for internet access.

OPNsense is freshly installed as a virtual machine on the Proxmox server but not yet configured. Just some Vlans but i made maybe a mistake there...

Goals

Segment the network into VLANs:

    VLAN 10: Personal devices (phones, laptops, etc.).

    VLAN 20: IoT devices (smart plugs, cameras, etc.).

    VLAN 30: Guest network.

    VLAN 40: Servers (Proxmox services, NAS, etc.).

Move DHCP responsibilities to OPNsense.

Properly configure the Proxmox network to route traffic through OPNsense.

Integrate VLANs with the managed PoE switch and Unifi APs.

A new Roadblock i hit just now: My Fritzbox 6690 is not able to run in bridgemode.

Also im getting quiete confused now where to start.
I know its not necessary for a Homenetwork. But usally im having fun and learn something…

What i did so far according to Home-Network-Guys Video:

forward the new network devices to opnsense. (net1 & net2)
Screenshot 2025-01-10 183751

I am connected trough net0 at the moment.

I tried to already set up some vlans ins opnsense and i can see now 2 networkdevices net1 and net2.

as i understand it now: i need to create a “WAN” connection in opnsense. correct? can you give me bump where?

and then i could set my “LAN” network device to all the vlans i created, correct?