UDM Pro Max - phony WAN connections

I see that the UDM Pro Max has:
WAN: (1) 2.5 GbE RJ45 port and (1) 10G SFP+ port

That is all fine and we can have failover and load balancing on those 2 ports.

I have access to multiple fibre connections, 5 or 6, via RJ45 connections on separate modems.
With work and cost I can upgrade one or two of them to SPF+

2 questions:

Q1.
If I just use the 2 actual WAN ports (RJ45 and SPF+) on the UDM Pro Max, can I have both of them running with different internet connections and public IP addresses but have them serve different VLANs. This would be IoT, guest, media, etc on one of the WAN ports and my main network on the other.

Q2.
Following on from Q1, can I plug in all my modems into the UDM Pro Max LAN ports and use them as WAN ports in the same fashion. Like Guest VLAN would have it’s own modem, media would have it’s own modem, IoT, etc.
And most importantly, would IDS/IPS still work on these phony WAN ports too?

Bonus Q:
What about setting up outgoing VPNs on these WAN or Phony WAN ports and routing over the VPN connections?

You can have two WAN connections and you can create policies to set which devices behind the firewall go out each WAN.

Unifi currently has a hard limit of two WAN ports, with a tertiary WAN through the use of one of their LTE modems which plug into the LAN side (only Unifi LTE modems do this, and it is automatically set up if you have Unifi switches). You can choose which ports on the router are the WAN (to an extent - I believe it is port 8 and up available) but only two at a time.

With traffic routing policies you can set VLANs to prefer one WAN or the other and thereby split their traffic across them if both are up.

Yes you can route over specific VPN connections, based on destination or client. However I don’t believe you can select which WAN a VPN connection uses, it will default to the one you have selected as Primary.