VLAN Configuration

Dashboard Location: Security and SD-WAN > Configure > Addressing & VLANs > VLANs

VLAN Management

VLAN configuration in Meraki appliances provides comprehensive network segmentation capabilities including subnet management, DHCP services, IPv6 support, and advanced networking features. This functionality enables organizations to create secure network boundaries, implement traffic isolation policies, and support complex network architectures while maintaining centralized management and visibility. VLAN configuration is essential for enterprise deployments requiring network segmentation, security isolation, and scalable network design.

Diagram

Classes

appliance (meraki.domains.organizations.networks)

Name	Type	Constraint	Mandatory	Default Value
vlans	List	`[vlans]`	No

vlans (meraki.domains.organizations.networks.appliance)

Name	Type	Constraint	Mandatory	Default Value
name	String	min: `1`, max: `127`	No
subnet	String	Regex: `^((25[0-5]\|2[0-4][0-9]\|1[0-9]{2}\|[1-9]?[0-9])\.){3}(25[0-5]\|2[0-4][0-9]\|1[0-9]{2}\|[1-9]?[0-9])\/([1-9]\|[12][0-9]\|3[0-2])$`	No
appliance_ip	IP		No
template_vlan_type	Choice	`same`, `unique`	No
cidr	String	Regex: `^(?i:any\|(\d{1,3}\.){3}\d{1,3}(\/\d{1,2})?)(,(any\|(\d{1,3}\.){3}\d{1,3}(\/\d{1,2})?))*$`	No
mask	Integer	min: `0`, max: `32`	No
ipv6	Class	`[ipv6]`	No
dhcp_handling	Choice	`Do not respond to DHCP requests`, `Relay DHCP to another server`, `Run a DHCP server`	No
dhcp_lease_time	Choice	`1 day`, `1 hour`, `1 week`, `12 hours`, `30 minutes`, `4 hours`	No
mandatory_dhcp	Boolean	`true`, `false`	No
dhcp_options	List	`[dhcp_options]`	No
dhcp_boot_options	Boolean	`true`, `false`	No
group_policy_name	String	min: `1`, max: `127`	No
vlan_id	Any	Integer[min: `1`, max: `4094`] or String[matches: `(?:[1-9]	[1-9][0-9]	[1-9][0-9]2
vpn_nat_subnet	String	Regex: `^((25[0-5]\|2[0-4][0-9]\|1[0-9]{2}\|[1-9]?[0-9])\.){3}(25[0-5]\|2[0-4][0-9]\|1[0-9]{2}\|[1-9]?[0-9])\/([1-9]\|[12][0-9]\|3[0-2])$`	No
dhcp_relay_server_ips	List	IP	No
dhcp_boot_next_server	IP		No
dhcp_boot_filename	String	min: `1`, max: `127`	No
fixed_ip_assignments	Class	`[fixed_ip_assignments]`	No
reserved_ip_ranges	List	`[reserved_ip_ranges]`	No
dns_nameservers	String	Regex: `^(upstream_dns\|google_dns\|opendns\|custom)$`	No

ipv6 (meraki.domains.organizations.networks.appliance.vlans)

Name	Type	Constraint	Mandatory	Default Value
enabled	Boolean	`true`, `false`	No
prefix_assignments	List	`[prefix_assignments]`	No

dhcp_options (meraki.domains.organizations.networks.appliance.vlans)

Name	Type	Constraint	Mandatory
code	String	Regex: `^([2-9]\|1[0-9][0-9]?\|2[0-9]\|2[0-5][0-4]\|[3-9][0-9])$`	Yes
type	Choice	`hex`, `integer`, `ip`, `text`	Yes
value	String	min: `1`, max: `127`	Yes

fixed_ip_assignments (meraki.domains.organizations.networks.appliance.vlans)

Name	Type	Constraint	Mandatory	Default Value
ip	IP		No
name	String	min: `1`, max: `127`	No

reserved_ip_ranges (meraki.domains.organizations.networks.appliance.vlans)

Name	Type	Constraint	Mandatory
start	IP		Yes
end	IP		Yes
comment	String	min: `1`, max: `127`	Yes

prefix_assignments (meraki.domains.organizations.networks.appliance.vlans.ipv6)

Name	Type	Constraint	Mandatory
autonomous	Boolean	`true`, `false`	No
static_prefix	IP		No
static_appliance_ip6	IP		No
origin	Class	`[origin]`	No

origin (meraki.domains.organizations.networks.appliance.vlans.ipv6.prefix_assignments)

Name	Type	Constraint	Mandatory	Default Value
type	Choice	`independent`, `internet`	Yes
interfaces	List	String[min: `1`, max: `10`]	No

Examples

Example-1: The example below demonstrates VLAN configuration using tested YAML configuration from pipeline fixtures.

meraki:
  domains:
    - name: "!env domain"
      administrator:
        name: "!env org_admin"
      organizations:
        - name: "!env org"
          networks:
            - name: "!env network_name"
              product_types:
                - appliance
                - switch
                - wireless
                - camera
                - sensor
                - cellularGateway
              appliance:
                vlans:
                  - vlan_id: 10
                    name: "VLAN10"
                    subnet: "192.168.10.0/24"
                    appliance_ip: "192.168.10.1"
                    dhcp_handling: "Run a DHCP server"
                    dhcp_lease_time: "1 day"
                    dhcp_boot_options: false
                    dhcp_options:
                      - code: "66"
                        type: "text"
                        value: "tftp.example.com"
                      - code: "67"
                        type: "text"
                        value: "bootfile"
                    reserved_ip_ranges:
                      - start: "192.168.10.40"
                        end: "192.168.10.50"
                        comment: "Reserved for printers"
                    dns_nameservers: "8.8.8.8"
                    mandatory_dhcp: true
                  - vlan_id: 20
                    name: "Guest"
                    subnet: "192.168.20.0/24"
                    appliance_ip: "192.168.20.1"
                    dhcp_handling: "Run a DHCP server"
                    dhcp_lease_time: "4 hours"
                    dns_nameservers: "1.1.1.1"
                    mandatory_dhcp: true