using multiple Subnets on a single SSID to gain additional clients

sslayton · ‎11-26-2025

Example:

I have 3 SSIDs for Wireless in a 3 story office bldg.

All 3 SSIDs will broadcast on all APs and roaming will take place between floors.

I have a single subnet of 192.168.99.0/24 to work with

192.168.99.0/25 gives me 124 useable hosts

192.168.99.128/26 gives me 60 useable hosts

192.168.99.192/27 gives me 28 useable hosts (use this one for a single SSID)

192.168.99.224/27 gives me 28 useable hosts (use this one for a single SSID)

Use the top two variable length subnets for a single SSID

aleabrahao · ‎11-26-2025

It is perfectly possible using VLAN tagging by SSID.

https://documentation.meraki.com/Wireless/Design_and_Configure/Configuration_Guides/Client_Addressing_and_Bridging/VLAN_Tagging_on_MR_Access_Points

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Rasmus Hoffmann Birkelund · ‎11-26-2025

I think you should be able to achieve this by using VLAN profiles, and define a Named VLAN group, where you can concatenate VLANs, much like a VLAN group on a Wireless Controller.

You'll have to create a VLAN profile, and define a group with vlans. Assign the APs to that VLAN profile, and then refer to the Named VLAN in on the SSID settings.

#########
LinkedIn ::: https://blog.rhbirkelund.dk/
Like what you see? - Mark as helpful ## Did it answer your question? - Mark it as a Solution 🙂
All code examples are provided as is. Responsibility for Code execution is solely your own.

Philip D'Ath · ‎11-26-2025

What is the purpose of the three different SSIDs?

Could you use a single/24 across everything (to keep life simple) and use wireless firewall rules to control access to various systems?

https://documentation.meraki.com/Wireless/Operate_and_Maintain/How_Tos/Firewall_and_Traffic_Shaping/MR_Firewall_Rules

Is using NAT mode for one of the SSIDs to hide its addressing an option (especially if one of the SSIDs is just for guest access)?

https://documentation.meraki.com/Wireless/Design_and_Configure/Configuration_Guides/Client_Addressing_and_Bridging/NAT_Mode_with_Meraki_DHCP

aleabrahao · ‎11-26-2025

This makes it simpler, but is it safer?

In many cases, not all of course, some clients request a single SSID but with distinct VLANs to create separate filters for each VLAN.

I also see other benefits, such as segmenting by departments in some cases. Could you have separate SSIDs? Yes, but why, if I can use only one in this way and still have everything segmented?

But each case is different and each has its own distinct needs.

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

frankvdveen · ‎11-27-2025

@sslayton you cannot split subnets within VLAN's, so you have to create either separate VLAN's for the subnets, or do something in the way Philip is proposing.

All of this possibly breaks client - client connectivity which you might need, especially multicast.

Also different SSID's per floor is not really what you should *want* I think. Maybe go a step back and describe the goal you are trying to achieve?