Cisco Wireless - Guest Access from different controller versions

Below you will find a proposed design on how to use Guest Access on Cisco Wireless Controllers with different software revisions.

Why might you have different controllers on different software? The answer is quite simple, Cisco doesn't support the 1000 series access points in 5.x and the mesh features have thier own code right now only in 4.1.

When using wireless guest access based on Anchoring to a DMZ controller, all controllers need to be in the same software version and revision (4.1, 4.2, etc..).

So, if you wanted to take advantage of different features in 5.x, you would either need a different DMZ controller for anchoring or you would have to come up with some other method to anchor your old controller software to the new one.

Version 5.x has this fantastic feature where you can do the Guest Access over a wired connection. Check out this document from Cisco about sample confguration if interested. Anyhow, this feature basically allows you to configure a controller in 5.x code to take traffic on a Layer 2 vlan and anchor it to a controller. This is basically just how wireless guest access works.

So here is what I think would work great:
All of the 1000 series access points and mesh access points can be on a controller with the mesh code (4.1.XXX). The other internal controller and the dmz controller can be upgraded to 5.X.
With this done, you should be able to simply break the anchor to the dmz from the mesh controller and dump the traffic out onto a specified vlan.
In theory, the 5.X controller would be anchoring that vlan to the DMZ and there you have it.

Now you've got wireless access as usual from all controllers, but your guest access on the mesh controller anchors to the internal controller (as a wired connection) and is then picked up and sent to the DMZ.

This all sounds good to me. Any thoughts?