Just got my answer back from Cisco TAC.

It is possible, and Cal was right on the money.

Using the new Role Mapping logic, map user's into different roles based
on whatever criteria.

<QUOTE>
Once you have a user mapped to a particular role, all you have to do is
go to (on the CAM): User Management --> User Roles --> Edit Role.

Change the field labeled "Retag Trusted-side Traffic with VID (In-Band)
/ Role VLAN (Our-of-Band)" to whatever VLAN it should be in to go out of
the correct ISP, which in your case would be the wireless ISP or the
wired ISP.

Once you have that going, just make sure your layer-3 device (router or
switch) is configured to send stuff from the wired and the wireless VLAN
to the right ISP. 
</QUOTE>


Now the Caveat.   My Untrusted side is trunked, but my trusted side is
NOT.  So I'm not sure how this would affect things.  It all depends on
how my switch handles tagged traffic on a port configed for untagged


> -----Original Message-----
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Cal Frye
> Sent: Wednesday, September 07, 2005 6:46 PM
> To: [log in to unmask]
> Subject: Re: Multiple gateways?
> 
> I concur. I don't think the trusted interface is that clever, 
> but the next hop upstream can route if the VLAN info is passed to it.
> 
> --Cal Frye, Network Administrator, Oberlin College
>    www.ouuf.org, www.calfrye.com
>    Say Yes Twice for Oberlin Schools!   www.oberlinyesyes.com
> 
>   "There is a whole world which I alone rule, but it ends at 
> my fingertips." -- Ashleigh Brilliant (c) 1981.
> 
> 
> Simon Bell wrote:
> > I wonder if you
> > set "pass through VLAN ID to managed network" if you could 
> then route 
> > the data based on the VLAN tagging.
> > 
> > Simon
> > 
> >>>> [log in to unmask] 9/7/2005 4:11:26 PM >>>
> > 
> > How about Option C?
> > 
> > VLAN 1,3, and 5 goto router 192.1.1.1 routes out over one ISP VLAN 
> > 2,4, and 6 goto router 192.2.2.2  (example IP's) routes out 
> over another ISP
>