I am managing wireless network in a convention centre which has almost 2000 APs and 28 WLCs. RF ID and location tracking enabled. In WLC I can see 500+ rogues getting detected in each WLC in different mac address. Few of these mac I can trnasilate into vendors and few of them I cant. Most of this mac addresses ends in 40:00. Any idea wht is these rogues are as they have a particular pattern in their mac address. Is this can be something like a fake AP attack ? Attaching a screenshot. Details of almost all of this rogue in WLC is shown as Unknown.