90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!
Also, do you have an available port on the PIX?
What you need to do is configure a second SSID for your guest network and configure a trunk port between the AP and Switch. Allow your internal wireless to trunk over your native VLAN (#1) and configure the second SSID to use a different VLAN (let's say #2.)
Terminate VLAN #2 at an available port on the PIX, configure the port with a security level of about 25... considering your LAN is security level 100 and DMZ is 50... configure IP, DHCP, NAT and firewall rules and you should be good. Guest SSID will only go out the internet and not into your network.