Are you sure this would be a good idea?

And what about DNS and HTTPS?

You'll probably need to study all the resources that the applications you'll be using utilize to make this network functional.

I think first of all you should check if this is really feasible and worth the effort.

In the case of an SSID that is -that- restrictive with no cell service around, I would personally be very wary of accidentally blocking something that causes issues in an emergency (especially if it were to block access to 911 somehow). I doubt there's a perfect solution using just Meraki, but a bandwidth restriction to something like 128 kbps plus content filtering might get you 90% of the way there which might be acceptable, especially if there is no budget for anything else.

I think I would take a different tack.

Block everything, then allow only specific nominated services rather than a broad category like "VoIP".

Is this mobile phones in North America? If yes, then its easy. Use Cisco Spaces with MR-A licensing and do carrier offload via open roaming for that SSID that will get you ATT and T-Mobile.  no Verizon yet (no comment as to  why 🙄)  Or you could work with 3rd party aggregator like American Bandwidth's WI-DAS and manually config open roaming via MR-E licensing.  If you are talking about doing this for a desk phone. run the Ethernet cables. Even if you have Verizon sim devices, there are ways to install certificates to board them  all with WPA3 and RADSEC