Hi There, I hope you can help a newbie out.

I have the following setup:
Router - Draytek
Switch - HP Aruba J9773A
Omada Controller OC200
AP - EAP245(EU)V3.0

Router IP 192.168.15.254 (setup with 2 network IP Ranges and DHCP enabled on Both)
Controller IP 192.168.15.253

Router connected to Port 1 on switch Tagged on both Vlans 1000 & 1500
OC200 Controller connected to Port 2 on switch Untagged on Vlan 1000 and Tagged on 1500
AP connected to Port 3 on Switch Untagged on on Vlan 1000 and tagged on 1500

Wired VLAN Networks setup on Controller 
   CORP - 1000
   Guest - 1500

Adopted an AP and given a static IP 192.168.15.1
Setup a Wireless Network called CORP with VLAN disabled
Setup a Wireless Network called Guest with VLAN enabled on VLAN 1500 (set as a guest Network)

I can see both SSID's broadcast from the AP and can connect to them both and I am given a correct IP address from the router depending on which network I connect to:
CORP 192.168.15.x
Guest 10.10.0.x

If I enable a Portal and apply it to the CORP SSID, my phone connects to the network, gets a correct IP address, tells me I need to sign in, click sign in, Portal window loads up OK and I click to agree to the T's&C's, and I am authorised onto the network and it works perfectly

If I enable a Portal and apply it to the GUEST SSID, my phone connects to the Network, gets a correct IP address, tells me I need to sign in, click sign in, thinks about it for a while then tells me:

Web Page not Available
The web page at 
http://192.168.15.253:8088/portal/entry?.....
Could not be loaded because:
net::ERR_CONNECTION_TIMED_OUT

I think I may need some help in setting up some Access Control Lists, but as a newbie I have not done this before and need some guidance from you kind people.

Regards,
Mark.