I have lan controllers and cisco WCS. One ap is recieving this message..
The AP '00:**:**:**:**:**' with protocol '802.11b/g' on Controller '**.***.***.**' received a message with a large NAV field. This is most likely a malicious denial of service attack.
(removed the numbers replaced with *)
now there are 4 pages of the same instance on this one AP.
I dont have any more information.. i.e it does not tell me on WCS what the mac is of the machine doing this (if there is one) nor does it tell me on the lan controllers.
how do i detect this problem and identify