User profile for user: lcang10
lcang10 Author
User level: Level 1
8 points

Multiple IP Addresses from Different Subnets on IPhone SE

Hello all. I am new to Apple Community.


My home network has multiple subnets (192.168.1.0/24, 192.168.2.0/29, 172.20.0.0/16). Is there a way I can setup multiple IP addresses from different subnets on the same wireless interface of the IPhone SE? Currently I only has a 192.168.1.0/24 address on the IPhone. To access other subnets, I configured complex NAT rules on my main router. Since my network is not segmented, accessing two subnets at the same time do not require routing.


I can achieve this on a Windows or a Linux computer. Apparently these two OSes do not have a limit on how many IP addresses I can set. Not sure if the Mac's and the IPhones are the same.

iPhone SE

Posted on Jul 17, 2021 8:56 PM

Reply

Similar questions

6 replies
User profile for user: MrHoffman
MrHoffman
Community+ 2025
User level: Level 10
145,467 points

Jul 17, 2021 9:09 PM in response to lcang10

Nope. You’re going to need to establish IP subnet routing, or simplify your IP network, or possibly both.


I’d also suggest consolidating into the same private address block, rather than operating in two separate private address blocks.


Pretty much any Ethernet network interface can operate with multiple IP addresses, but now you’re trying to set up routing on each interface. Alas, iPhone either expects a manual one-subnet setup, or the address and subnet data provided by DHCP. Which won’t let the iPhone directly chat with multiple adjacent subnets in parallel.


If this is multiple Wi-Fi routers for coverage or other reasons, maybe access points are the path out of this complexity. Or a better-grade firewall-router.

Reply
User profile for user: lcang10
lcang10 Author
User level: Level 1
8 points

Jul 17, 2021 9:30 PM in response to MrHoffman

Alas, iPhone either expects a manual one-subnet setup, or the address and subnet data provided by DHCP.

Yeah, this is one of the IPhone's limitation. I can setup DHCP/static IP coexistence on Windows computers, which is cool, but not so useful.

If this is multiple Wi-Fi routers for coverage or other reasons, maybe access points are the path out of this complexity.

Nearly all WiFi routers can be reduced into an access point, or a layer 2+ device. This is not my need.

When I am outside using public WiFi, I need to be able to VPN tunnel to my LAN. I setup different VPN tunnels for different levels of access in case one set of credentials is compromised. Having different subnets ease the creation of ACLs, so no need to carefully cherry-pick the addresses. Also, I am on a budget (or rather creating network challenges for myself to learn networking in general), so no enterprise gears can be added. I got several decent routers from ISP and trying to maximize their potentials too.

Reply
User profile for user: MrHoffman
MrHoffman
Community+ 2025
User level: Level 10
145,467 points

Jul 17, 2021 9:26 PM in response to lcang10

I understand well what you’re after.


I run multiple subnets in different installations, with a mix of vLAN and physical separation and all subnets within the same private block (including a DMZ, and at various times a trash-IoT-device isolated subnet), and all (selectively) routable via a firewall/router.


IP clients expect one address, and lower-end and embedded boxes don’t tend to be running multiple NICs or multiple IP addresses on a shared NIC or local routing based the configured subnet and designated router.


And I much prefer to run the VPN server in the firewall, as that avoids some of the common messes involved when trying to pass VPN connections through a firewall via port forwarding.


Reply
User profile for user: lcang10
lcang10 Author
User level: Level 1
8 points

Jul 17, 2021 9:14 PM in response to MrHoffman

Thank you for the advice, but I do need software-defined network separation in the absence of physical segmentation. I need a subnet for IoTs, one for surveillance, one for VPN server, and one for experimenting. All subnets are routable via a layer 3 device with a long list of access control rules.


I guess I am out of luck with the IPhone limitation.

Reply
User profile for user: MrHoffman
MrHoffman
Community+ 2025
User level: Level 10
145,467 points

Jul 17, 2021 10:24 PM in response to lcang10

Yes, though I’ve had various cases where firewall port forwarding cannot differentiate multiple parallel VPN connections, and gets the connections tangled and disconnects. And I don’t prefer to VPN directly into a host-based VPN server running on the server that may be having issues, for obvious reasons. Nor do I prefer to work with Cisco gear, and that for various reasons.


Again, I’d get a firewall/router between your IP subnet segments, particularly if there are differing levels of trust across the equipment connected to different subnets, and as trying to connect to multiple subnets and to troubleshoot preferred paths gets gnarly on some systems.


Reply
User profile for user: lcang10
lcang10 Author
User level: Level 1
8 points

Jul 17, 2021 9:39 PM in response to MrHoffman

And I much prefer to run the VPN server in the firewall, as that avoids some of the common messes involved when trying to pass VPN connections through a firewall via port forwarding.

Not too bad with ESP/NAT-T/ISAKMP for IPsec IKE2 VPN. Configuring VPN passthrough on a router provided by an ISP is not that difficult if you are familiar with the GUI.


I tried to use IPhone's built-in IKEv2 VPN client. Apple seems to lack documentation on that. It took me and a Cisco SmartNet agent half a month to configure.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Multiple IP Addresses from Different Subnets on IPhone SE

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up