Shoot. Forgot to mention the most important user advantage of the current s= etup: since there's only one physical interface on the firewall handling al= l the (aggregated by the switch) wireless traffic, everyone can use that in= terface's IP as the same gateway address, no matter which AP they connect t= o.
Any other solution has to keep that kind of single-address happiness so it'= s transparent to the users no matter how many APs we have. Figure that's no= t hard, but necessary to mention. Tanks.
