Please Helpme to configure the following scenario . We have 10 Sophos access points conected to sophosxg firewall and all these access points are connected to same dedicated switch .we need to create two ssid like guest and wlan and need to isolate guest

HI Pyarelal, 

In your case if you need to connect multiple AP with a Common Switch and also want to create two SSID for each AP . Then you may need to consider VLAN in your network , You may create Multiple SSID and VLAN association for each to achieve isolation . 

Requirements : You may configure  VLAN on XG interface and create a DHCP server accordingly .  Trunk connection is needed between XG --Switch--AP.  

The Isolation is considered when two or more wireless clients are connected on the same AP .

The client isolation means that every device connected to the same SSID will not be able to reach each others.

On the other hand I presumed the OP meant to isolate the traffic between the two SSID which can be achieved by selecting "Separate Zone" in the client traffic. This way you can even not configure any VLAN. The downside is that you can't have the same subnet in the SSID and on a wired interface

The client isolation means that every device connected to the same SSID will not be able to reach each others.

On the other hand I presumed the OP meant to isolate the traffic between the two SSID which can be achieved by selecting "Separate Zone" in the client traffic. This way you can even not configure any VLAN. The downside is that you can't have the same subnet in the SSID and on a wired interface