Thanks for your suggestions.
I did some test in our lab.
If the AP is in AP mode, both deauth-only and tarpit wireless containment are almost ineffective, client looses 1 ping randomly, all other connections work fine.
Instead, if I set the AP in Air Monitor mode, the DoS against the rogue works very well and the client can not do any traffic at all.
Is this the expected behavior?
Can't the AP performance better in AP mode?
Thanks in advance.
Gian