I could not agree more @anon47919701! That is why I currently have different vlans and different SSIDs, including a guest wifi. All untrustworthy devices, such as Chromecast or other endpoints are isolated in another Vlan / Wifi. Private Vlan and Guest Vlan can cast to IoT Vlan, but IoT Vlan cannot connect to other Vlans (only respond). The reason is that I want to allow Guest to cast music from their phone sometime and keep a strong isolation with the private Vlan. It works well with any application on the market but not with Roon because I cannot get ports and protocols used (Slow search + Chromecast/Airplay cannot be enabled) … sight…