We have a wireless network with a dedicated VLAN subnet that provides guests to the office who are using their own personal laptops or smartphones access to the Internet.
We still need to monitor the traffic even though these people will not have domain accounts to authenticate with. Is it easier/better to add a rule that provides that subnet with anonymous web proxy access or a rule that makes that subnet SecureNat?
I would guess that SecureNat would be easiest since none of the users will need to configure anything with their proxy settings, but which configuration will have the most useful logging?