UniFi APs and VLANs

✨ Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSync | Backblaze backup | Free white papers

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › UniFi APs and VLANs

Paul1977

5007 posts

Uber Geek

#272604 4-Jul-2020 22:17

Send private message

Can you configure UniFi APs to broadcast multiple SSIDs on different VLANs so the 2 networks are fully isolated from each other?

E.g. SSID_1 on VLAN30 subnet 192.168.30.0/24. SSID_2 on VLAN40 subnet 192.168.40.0/24

cyril7

9052 posts

Uber Geek

ID Verified

Trusted

Subscriber

#2517384 4-Jul-2020 22:21

Send private message

Yes

Cyril

CYaBro

4568 posts

Uber Geek

ID Verified

Trusted

#2517434 4-Jul-2020 22:57

Send private message

Yes but you need a router to setup the vlans on like a USG.
You can do a guest wifi network without that but they’ll be on the same subnet as the main ssid, just blocked from accessing anything except the internet.

Opinions are my own and not the views of my employer.

fe31nz

1210 posts

Uber Geek

#2517445 5-Jul-2020 00:26

Send private message

I set up my VLANs in my switch (EdgeSwitch 24 Lite). Any fully VLAN capable switch should be able to do that. Just set the port the AP is connected to so that the untagged packets and any VLANs you want go to the AP. In the AP, set up each SSID as untagged, or tagged to one of the VLANs going to that port.

I run three SSIDs: Blue, Blue-guest and Blue-IoT. The same SSIDs are used on 2.4 GHz and 5 GHz. Blue gets the untagged packets from my Inner subnet where I only allow trusted devices. Blue-guest gets VLAN 2 packets from my Outer subnet where I put my guests and services for them. Blue-IoT gets VLAN 5 packets from my IoT subnet where untrusted devices go. I also set up my IoT SSID so that the devices are not allowed to talk directly to each other.

My router (EdgeRouter 4) has two ports connected to the switch, eth1 and eth 2. Eth2 sends untagged packets to the Inner subnet. The switch passes them on to all the other untagged ports that are on the Inner subnet. Eth1 sends untagged packets to the switch, where they get tagged at the switch port to the Outer subnet on VLAN 2. The IoT subnet on VLAN 5 shares the eth2 cable to the switch but with the packets tagged as VLAN 5, and they are left tagged and the switch passes them through as VLAN 5. My AP (Ubiquiti Flex HD) has only one Ethernet port, so it gets untagged Inner subnet packets, VLAN 2 tagged Outer subnet packets and VLAN 5 tagged IoT packets on the same cable.

News and reviews »

Logitech G522 Gaming Headset Review
Posted 18-Jun-2025 17:00

MÄori Artists Launch Design Collection with Cricut ahead of Matariki Day
Posted 15-Jun-2025 11:19

LG Launches Upgraded webOS Hub With Advanced AI
Posted 15-Jun-2025 11:13

One NZ Satellite IoT goes live for customers
Posted 15-Jun-2025 11:10

Bolt Launches in New Zealand
Posted 11-Jun-2025 00:00

Suunto Run Review
Posted 10-Jun-2025 10:44

Freeview Satellite TV Brings HD Viewing to More New Zealanders
Posted 5-Jun-2025 11:50

HP OmniBook Ultra Flip 14-inch Review
Posted 3-Jun-2025 14:40

Flip Phones Are Back as HMD Reimagines an Iconic Style
Posted 30-May-2025 17:06

Hundreds of School Students Receive Laptops Through Spark Partnership With Quadrent's Green Lease
Posted 30-May-2025 16:57

AI Report Reveals Trust Is Key to Unlocking Its Potential in Aotearoa
Posted 30-May-2025 16:55

Galaxy Tab S10 FE Series Brings Intelligent Experiences to the Forefront with Premium, Versatile Design
Posted 30-May-2025 16:14

New OPPO Watch X2 Launches in New Zealand
Posted 29-May-2025 16:08

Synology Premiers a New Lineup of Advanced Data Management Solutions
Posted 29-May-2025 16:04

Dyson Launches Its Slimmest Vaccum Cleaner PencilVac
Posted 29-May-2025 15:50

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

RSS feeds: Main feed; Forums feed
Copyright: ©2002-2025 Geekzone®

Site features: Geekzone BI dashboard; Geekzone Badges; Geekzone Status Page

Affiliate links: Samsung; AliExpress; Wise; Sharesies; Hatch; GoodSync; Backblaze backup

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising; Trademark and copyright