Use the following options to automatically trim (oldest) events from your snort database and prevent performance loss.

Overly large MySQL databases can create performance and stability problems, which can cripple a snort intrusion detection deployment. The larger a snort database grows the longer it takes for the database to insert new events and query data for reporting and display.

To keep the snort database within a reasonably managable size, the console includes this feature to automatically trim events from the snort database when it reaches the "Trim Threshold". Oldest events are trimmed from the database as the threshold is exceeded.

Trim Threshold: The total number of events in the snort database to be reached before oldest events are deleted.
Snort Events: The current total number of events within the snort database.