I would never, under any circumstances, buy equipment that has to sit outside the Firewall. The whole point to Wireless access is security. If you can’t follow standards, you go out of business. Sounds like these chumps need to close shop. There isn’t a single network out there I would risk on such a ridiculous implementation.
“Uh we are secure cause we use a cert, but go ahead and keep our equipment publicly accessible so we can all have wireless access”
Only Answer = Return the unit and buy a Cisco device.