Can anyone tell me what Cisco defines as a "malicious packet"? We're getting an Alert about every couple hours in CSA flagging a malicious packet sent from each WAP to 184.108.40.206.
For more information, here's the exact message, with the IP of the WAP blanked out:
A packet with malicious content was detected. Reason: Malicious packet. IGMP: *WAP IP address*->220.127.116.11 type 0x11. The operation was denied.
The other strange thing is that we are running two test computers over wireless, but only one is generating the errors.
Any idea what this might be?