Any additional info I need to provide or whatever so you can provide some tips or something to try please ask. Or if there is a video that walks through it in detail then let me know.  I'm sure it's a setting somewhere or somewhere that I don't have that IoT profile routing out the WAN but I can't find it. 

  @msc03 The first basic checks without seeing any info from your system.  Ensure IoT VLAN is an Interface VLAN, with checks on the router port to the switch.  Make sure the switch uplink port to the router (trunk port) has a profile that includes the IoT VLAN.  Make sure your ACLs for both switch and gateway are in top to bottom order of acces to elimination.  That is, ACLs should first allow traffic before denying traffic, since the rules are processed from top to bottom of the list, and once a rule has been met no further rules are checked.  Attach a computer to a port set as IoT VLAN, and see if the computer gets internet or not.  Perhaps the Hue Hub needs a port opened, or a UPnP allowed.  Make sure the trunk port profile is not set to "Isolated", it shouldn't be, because it would cause issues with other VLANs but just adding that out there.

  @JoeSea So...verified all settings and everything was good.  Got the part about checking the port with a laptop.  Ah, OK...I hadn't thought about doing that as a test (novice move, I'm proving I'm learning here, I guess...).  Guess what?  Internet access but no access to the other VLANs (yay!) so...I guess I really did set it up right. I'll dig further into it and see if it's a port thing or what.  THANK YOU for your thorough response here.  I truly appreciate your taking the time to give me those suggestions.