Our RFS can  do AP containment without Air Defense but we need to dedicate an AP to be a detector AP.  We are competing with Trapeze and the vendor claims that it can scan all b/g channels for rogue AP's and send de-authentication messages while  providing connections to mobile users at the same time.  While they admit  that this will affect the AP's performance but  does anyone know by how much percent it will be degraded if we do a throughput test?   Are there other things that we can say in order to counter this feature?   The end user's budget is limited and adding  Air Defense might price ourselves  out of the bid. Any help would be greatly appreciated.