SES Evolution 2.5.5 new features and enhancements
CAUTION
Before updating your solution from a version 2.3.x to version 2.5.5, you must download and deploy the 2304a security policy. To download it, go to your MyStormshield client area or to the Stormshield Updates panel in your administration console.
Logs management
Protection against log flooding
In some cases, the SES Evolution agents generate a large number of logs, which can be caused by the administrator, a configuration problem, false positives, or an attack.
To avoid log flooding and to optimize the configuration of your security rules, the SES Evolution agent now has a protection mechanism. It counts identical or similar logs issued over a short period. When a certain threshold is reached, it stops generating similar logs.
Instead, it generates a warning log at the beginning and end of the log flooding.
From these warning logs in the Agent logs panel of the administration console, you can view the log that triggered the protection.
