Just migrated from pfSense - one VLAN doesn't work

Greetings all,

I finally made the switch and just migrated from pfSense to OPNsense. I am mostly up and running, after spending almost all day on this project yesterday. When I had enough operational, I went to bed. Back at it today, I cannot solve this last hiccup and I can't figure it out.

So, topology goes ATT fiber ONT to ATT fiber router in pass through mode to a Protectli 4 port that has OPNsense on it. From there goes to an Omada switch with OC200 controller, two more switches and an AP.

OPNsense is configured with WAN (obviously), LAN, VLAN69 and VLAN169. 169 is blocked with rules from communicating with LAN and 69 (as was setup similar in pfSense). LAN houses all the switches and a IntelNUC as well as a Starling Home Hub. 69 is the trusted network, 169 is the IOuT.

Everything on my "trusted" works. I can see the router, Omada, the NUC - everything.

Everything on 169... does not have access to the internet. My work phone, cameras, nothing. They all have IP address from OPNsense, but the default deny rule is blocking everything. I just don't understand why it's not passing on the force out rule.

Everything is up to date - installed yesterday.

Any ideas? I'm decently savvy with this since coming from pfSense (but by no means an expert), however I just can't figure this out.