All Apps and Add-ons

How to limit CSV file size

chuckf
New Member

Currently, I'm pulling in the minemeld_domainthreatlist.csv lookup via the Palo Alto Splunk TA v 6.1.1.
It's working as expected, but the CSV file gets rather large (currently over 300mb) with lots of duplicate events.

Is there a way of controlling the file size? Either by time or number of similar events?

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In September, the Splunk Threat Research Team had two releases of new security content via the Enterprise ...

New in Observability - Improvements to Custom Metrics SLOs, Log Observer Connect & ...

The latest enhancements to the Splunk observability portfolio deliver improved SLO management accuracy, better ...

Improve Data Pipelines Using Splunk Data Management

  Register Now   This Tech Talk will explore the pipeline management offerings Edge Processor and Ingest ...