Need help setting up a guest wireless network

At my home I'm trying to setup and open wireless network for guest access when I turn it on. I have a GS724T switch with a WG302 access point. I've created two wireless networks in the WG302: one for my wireless network that I use all the time (encrypted) and a open network for guest use. I want to keep the traffic for the guest network separate from my private network so I set up the guest wireless network as VLAN 2 and the encrypted network is VLAN 1. I have a pfSense firewall system that provides DHCP service to the network (I would like both VLAN networks on the same network segment). The WG302 is plugged in to port 5 on the GS724T and the firewall is on port 1. I tried making ports 1 and 5 untagged for VLAN 2 (all other ports are blank) in the switch but if I do that then devices connecting to the guest network don't get an IP address for port 1. The tagged/untagged for VLAN 2 is also a little confusing for me for the port that the WG302 is attached to (port 5) because it carries traffic for both VLANs 1 and 2.

I've tried all of the combinations of tagged/untagged for ports 1 and 5 on VLAN 2 but nothing works. Can anyone offer any insight on how I should configure this to keep my guest wireless network separate from the rest of the network?