Dedicated wifi for automation allows me to have devices such as Xiaomi Vaccuum, or security camera not phoning home. OpenWRT with good firewall rules completely isolate my "public" containers/VMs from my lan.
Server was built over time, disk by disk. I'm now aiming to buy only 12TB drives, but I got to sacrifice the first two as parity...
I just love the simplicity of snapraid / mergerfs. Even if I were to loose 3 disks (my setup allows me the loss of 2 disks), I'd only loose data that's on these disks, not the whole array. I lost one drive once, recovery went well and was relatively easy.
I try to keep things separated and I may be running a bit too many containers/vms, but well, I got resources to spare :)
Interesting setup, mines very similar. Except with ZFS and no DMZ 😅 I'm thinking of setting up vlans for automation too, how do you handle updates and software downloads on that lan?
If I ever need to update any device on the home automation vlan, I'd add an exception to the firewall for this specific host for the time of the update