You should make VLAN 34 the untagged VLAN on those ports so that the APs can just come up on that VLAN.  That would be referred to as VLAN 1 on the IAPs.  They should come up and see each other easily, in that situation.

Hi Colin,

Maybe I should have mentioned this earlier:

• Each /24 subnet in VLANs 31 - 34 is for user data access in each room (there are 4 rooms)
• Downstream from the Cisco 3750X where the VLANs are configured, there is a Cisco small business SG100 series switch in each room which is physicaly connected to ports 1 to 4 on the Cisco 3750X via Cat 5e
• From the SG100, all ports (except 1) is patched to the user's desk port for LAN access via Cat 5e.
• Each IAP-215 is connected to the SG100 in each room
• Thus, phycially, you will see as follows: 3750X -> SG100 -> IAP-215 / user's PC via cat 5e

Thank you

Do you plan to have the same SSID in every room?

Can a user in one room see the SSID in another room or roam?

The answer to those two questions will determine how this is designed.

Hi Colin,

The plan is to have 2 SSIDs:

• Internal SSID for employees
• Guest SSID for visitors guest where traffic is isolated
• Both SSIDs to be broadcasted across all IAPs and user's are expected to roam.

Thank you

If users have a different subnet depending on what room they are in, would it be possible to roam?

Hi Colin,

Here's the topology:

Note that the red cables are fibre cables.

Each VLAN from VLAN 31 - 34 corresponds per room.

IAPs are intended to connected to the unmanaged SG100 switches in each room.

Of course as originally mentioned, if this is not possible, the idea would be to wire the IAPs in each room directly to the Cisco 3750X.