Hello Everyone. I am trying to deploy a guest wireless network. I created the "guest" SSID and it is set to open authentication with the web authentication option. Once a user associates to guest, they get a DHCP address from an ISA 2004 server that I created. The ISA server is currently running in Proxy server mode. I can get the web authentication to work if I do not have my virtual gateway interface bypass the proxy (1.1.1.1). After that I have to manually enter in the proxy info in my browser to get internet. I've setup WPAD on the ISA server to attempt to get these settings automatically. However I have tried to configure WPAD using DNS and also DHCP with the 252 option and I cannot get it to work. The only other option that I have is to put the ISA server in a edge firewall mode and have the 2nd NIC be my gateway address (pushed out via dhcp). I'd rather not do this because then I'd have to use policy based routing to get other "guest" vlans from remote sites back to the gateway. The other option I thought about would be to setup an anchor here and then have the other controllers send the users back to my controller. Has anyone had any luck with a proxy server and the web authentication feature of the WLC? I need an ISA server to run SurfControl. We don't want our guests viewing questionable content:P