Update securing-guest-wireless-networks.mdx

Author: securitypedant

src/content/docs/reference-architecture/design-guides/securing-guest-wireless-networks.mdx

@@ -26,8 +26,8 @@ While it may be unlikely that your organization could face criminal charges, you
 This reference architecture is designed for IT or security professionals who are looking at Cloudflare to help secure their guest wireless networks. To build a stronger baseline understanding of Cloudflare, we recommend the following resources:
 
 - What is Cloudflare? | [Website](https://www.cloudflare.com/what-is-cloudflare/) (5 minute read) or [video](https://www.youtube.com/watch?v=XHvmX3FhTwU) (2 minutes)
-- Cloudflare Zero Trust \- [https://www.cloudflare.com/zero-trust/](https://www.cloudflare.com/zero-trust/)
-- SASE Architecture with Cloudflare \- [/reference-architecture/architectures/sase/](/reference-architecture/architectures/sase/)
+- Cloudflare Zero Trust | [https://www.cloudflare.com/zero-trust/](https://www.cloudflare.com/zero-trust/)
+- SASE Architecture with Cloudflare | [/reference-architecture/architectures/sase/](/reference-architecture/architectures/sase/)
 
 This reference architecture guide will help readers understand:
 
@@ -59,7 +59,7 @@ To route all DNS queries through Cloudflare, update your router's DNS settings i
 
 For enhanced security, prevent wireless guests from accessing other DNS services by creating a firewall rule on the router (if supported). This rule should allow access only to Cloudflare's DNS servers and block all other DNS destinations on UDP/TCP port 53\. Additionally, some advanced wireless routers support content filtering. If available, enable options to block DNS over TLS (DoT) or DNS over HTTPS (DoH) to ensure endpoints cannot bypass your configured DNS security settings in Cloudflare.
 
-![Figure 2: When DNS queries are forwarded to Cloudflare, policies can be implemented to prevent access to malicious and high risk destinations.  “Guest-Security-Block” and “Guest-Content-Block” refer to the specific DNS policies applied to the wireless guest devices.](~/assets/images/reference-architecture/securing-guest-wireless-networks/figure2.svg "Figure 2: When DNS queries are forwarded to Cloudflare, policies can be implemented to prevent access to malicious and high risk destinations.  “Guest-Security-Block” and “Guest-Content-Block” refer to the specific DNS policies applied to the wireless guest devices.")
+![Figure 2: When DNS queries are forwarded to Cloudflare, policies can be implemented to prevent access to malicious and high risk destinations. "Guest-Security-Block" and "Guest-Content-Block" refer to the specific DNS policies applied to the wireless guest devices.](~/assets/images/reference-architecture/securing-guest-wireless-networks/figure2.svg "Figure 2: When DNS queries are forwarded to Cloudflare, policies can be implemented to prevent access to malicious and high risk destinations.  "Guest-Security-Block" and "Guest-Content-Block" refer to the specific DNS policies applied to the wireless guest devices.")
 
 ## Secure guest traffic sourced from an enterprise network