Given:
ABC Company has a WLAN controller using WPA2-Enterprise with PEAPv0/MS-CHAPv2 and AES-CCMP to secure their corporate wireless data. They wish to
implement a guest WLAN for guest users to have Internet access, but want to implement some security controls. The security requirements for the hot-spot include:

-Cannot access corporate network resources
-Network permissions are limited to Internet access
-All stations must be authenticated

What security controls would you suggest? (Choose the single best answer.)

A.
Implement separate controllers for the corporate and guest WLANs.

B.
Use a WIPS to deauthenticate guest users when their station tries to associate with the corporate WLAN.

C.
Configure access control lists (ACLs) on the guest WLAN to control data types and destinations.

D.
Require guest users to authenticate via a captive portal HTTPS login page and place the guest WLAN and the corporate WLAN on different VLANs.

E.
Force all guest users to use a common VPN protocol to connect.